Anonymous | Login
Project:
RSS
  
News | My View | View Issues | Roadmap | Summary

View Revisions: Issue #46777 All Revisions ] Back to Issue ]
Summary 0046777: Update package-lock.json to fix npm audit issues
Revision 2021-07-14 18:01 by shuehner
Description npm audit reports problems which should be fixed by updating versions in the package-lock.json

found 7201 vulnerabilities (267 moderate, 6934 high) in 2679 scanned packages
  run `npm audit fix` to fix 7109 of them.
  2 vulnerabilities require semver-major dependency updates.
  90 vulnerabilities require manual review. See the full report for details.

Grouping them to causing package:
$ npm audit | grep 'Package' | sort | uniq -c
     30 │ Package │ browserslist
      5 │ Package │ css-what
      1 │ Package │ dns-packet
     26 │ Package │ glob-parent
     88 │ Package │ hosted-git-info
   6916 │ Package │ lodash
    102 │ Package │ postcss
     10 │ Package │ prismjs
      8 │ Package │ ssri
      2 │ Package │ url-parse
     13 │ Package │ ws
Revision 2021-07-14 18:01 by shuehner
Description npm audit reports problems which should be fixed by updating versions in the package-lock.json

found 7116 vulnerabilities (198 moderate, 6918 high) in 2679 scanned packages
  run `npm audit fix` to fix 7034 of them.
  1 vulnerability requires semver-major dependency updates.
  81 vulnerabilities require manual review. See the full report for details.

Grouping them to causing package:
$ npm audit | grep 'Package' | sort | uniq -c
     88 │ Package │ hosted-git-info
   6916 │ Package │ lodash
    102 │ Package │ postcss
      8 │ Package │ ssri
      2 │ Package │ url-parse


Copyright © 2000 - 2009 MantisBT Group
Powered by Mantis Bugtracker