none of these security updates should affect anyone. I don't use the npm build pipeline anymore, but it just ran a gulp file to recompile stls