A few admin interface libraries have known security vulnerabilities.
Luckily, these are only used while building/testing Opencast making them
more or less uncritical.
https-proxy-agent passes unsanitized options to Buffer(arg) resulting
in DoS and uninitialized memory leak.
Incorrect parsing in url-parse <1.4.3 returns wrong hostname which
leads to multiple vulnerabilities such as SSRF, Op...