This is not a fix for the vulnerability.
Just updating the dependency to the latest version.
@see https://yarnpkg.com/package/cross-env
Yes, I know that they recently released version 6.0 and in a short time 7.0.
Update axios in package.json to ^0.19 so that I don't get security vulnerability notification emails from Github when I push to my laravel project repos even though ^0.18 covers 0.19 as well
Minor style issue more than anything.
If using `php artisan preset` it will use PHP's `JSON_PRETTY_PRINT` to rewrite the file (https://github.com/laravel/framework/blob/master/src/Illuminate/Foundation/Console/Presets/Preset.php#L44). `JSON_PRETTY_PRINT` uses four spaces for indentation, causing the entire file contents to be altered upon a diff.
Rather than adding logic to change the indentation after executing `json_encode()` in `Illuminate\Foundation\Console\Presets\Preset`, it seems easier to just fix the default indentation in `package.json`. NPM doesn't seem to change the spacing at all, so this seems like a happy medium.
`dev` and `prod` are just aliases, so this allows to just defer them to their counterparts.
`watch-poll` just adds one extra argument so the special option `--` allows to pass it to the `watch` script.
It trips me up each time that `npm run dev` exists but `npm run prod`
does not. This serves to fix that case, as well as providing consistency
in both directions `dev`/`development` and `prod`/`production`.
[Source](https://twitter.com/michaeldyrynda/status/846507021251690497)
