Package shows as having critical vulnerability in scans

[fstaffa]

Description

We use snyk for dependency scan and latest newrelic package is marked as impacted by a critical vulnerability https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:P through it's dependencies. I don't think this actually is a security problem, but creates noise in any security scans.

Expected Behavior

Don't show the alert

Steps to Reproduce

run npm audit

Your Environment

does not depend on environment

Additional context

The transitive dependency is already removed in latest https://github.com/newrelic/csec-node-agent

[Newrelic-Boomi]

https://new-relic.atlassian.net/browse/NR-501012

[fstaffa]

Can be fixed using npm audit fix without modifying this package