Running
npm install node-red-contrib-viseo-google-spreadsheet
Yields a bunch of scary warnings about deprecated dependencies and security warnings. Running npm audit afterwards gives me a long list of details that are above my current knowledge level. For instance,
│ High │ Denial-of-Service Extended Event Loop Blocking
│ Package │ qs
│ Patched in │ >= 1.x
│ Dependency of │ node-red-contrib-viseo-google-spreadsheet
│ Path │ node-red-contrib-viseo-google-spreadsheet >
│ │ node-red-viseo-helper > request > qs
│ More info │ https://npmjs.com/advisories/28
I checked the advisory and then the repository and then ran npm install qs in the hopes that it would fix it. Restarted NR and re-ran npm audit and got the same result. Clearly there is something I should be doing but don't know how to do.
As a general question, when faced with security/deprecated warnings when installing a node, what is the process for ironing that out?
The Google spreadsheet node is installed and works well enough to tell me that I need to RTFM:
Missing VISEO Bot Maker key - Read the documentation.
Which I did and saw no mention of a Bot Maker key, nor do I see a place to enter it...