Workflow in Visual Studio Code, Windows 10:
1) First I created a fresh React project with: npx create-react-app my-project
2) Then I downloaded the 'GSAP 3 with Shockingly Green bonus files' ZIP file, version 3.8.0
3) and added the gsap-bonus.tgz in the root directory of my project
4) When I installed the file with : my-project > npm install ./gsap-bonus.tgz,
I received the message: added 1 package, and audited 1946 packages in 10s,
58 vulnerabilities (16 moderate, 40 high, 2 critical)
5) After installation: my package.json file looks the same as in the 'module install' video.
How can there be that many vulnerabilities in an 'up-to-date' GSAP installation, and do I need to fix this ?