xcpretty is just used to pipe the super verbose build output into something more readable and provides no further functionality at all.
This being said I don‘t care too much about those security warnings - if I was writing a software that does online banking I would make sure that there are no issues like this but a potential buffer overflow in a console text processor will not cause any harm and I can see no scenario where this could become even remotely concerning.