Whenever a security update is available, e.g. via a NPM package update, they will be updated and a new release will be made available. Only the latest version of the tool will receive updates.

Whenever you find a vulnerability that has not yet been fixed, please create an issue and I will look into it!