tfjs-models npm packages have incorrectly defined dependencies

<em>Please make sure that this is a build/installation issue. As per our [GitHub Policy](https://github.com/tensorflow/tensorflow/blob/master/ISSUES.md), we only address code/doc bugs, performance issues, feature requests and build/installation issues on GitHub. tag:build_template</em>

**System information**
- OS Platform and Distribution (e.g., Linux Ubuntu 16.04): MacOS
- Mobile device (e.g. iPhone 8, Pixel 2, Samsung Galaxy) if the issue happens on mobile device: N/A
- TensorFlow.js installed from (npm or script link): npm
- TensorFlow.js version: https://www.npmjs.com/package/@tensorflow-models/face-detection@1.0.3
- CUDA/cuDNN version: N/A


**Describe the problem**
Some of the packages in the `tfjs-models` repo have transitive dependencies on rimraf > glob > inflight. `inflight` has a security issue explained [here](https://security.snyk.io/vuln/SNYK-JS-INFLIGHT-6095116) This prevents consumers installing `@tensorflow-models/face-detection` or a few other models. 

**Provide the exact sequence of commands / steps that you executed before running into the problem**
- `npm i @tensorflow-models/face-detection@latest`
- `npm explain inflight `
- affected version of `inflight` in the dependency tree


**Any other info / logs**
I've created a PR to fix this issue for package consumers - https://github.com/tensorflow/tfjs-models/pull/1543


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

tfjs-models npm packages have incorrectly defined dependencies #8593

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

tfjs-models npm packages have incorrectly defined dependencies #8593

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions