Reputation:
Npm audit issue, keeps getting error again and again
Keeps getting this issue, in my new github repo, cleaned cache, again installed npm but nothing seem to work now, what should i do? how can i fix this?
even if i do npm audit fix it return with the following code again and again.
up to date, audited 1778 packages in 13s
49 packages are looking for funding
run `npm fund` for details
31 vulnerabilities (24 low, 3 moderate, 4 high)
To address issues that do not require attention, run:
npm audit fix
To address all issues (including breaking changes), run:
npm audit fix --force
Run `npm audit` for details.
Upvotes: 2
Views: 1283
Answers (3)
Reputation: 104
This is nothing to worry about. essentially what is happening is that there are some problems in the packages you're using. essentially if you update them, they'll break something else so they're frozen in place unless the maintainers fix it. if you want you can fix them yourself, but it is generally too much effort. nothing you can do about it except wait until they're fixed, that is, if the maintainers decide to fix them
Upvotes: 1
Reputation: 1036
You can solve it with npm-force-resolution package
Add resolutions section with vulnarable dependency
"resolutions": {
"lodash": "^4.17.5"
}
Then run
rm -r node_modules
npx npm-force-resolutions
npm install
Upvotes: 0
Reputation: 126
Some of the errors require manual debugging and can't be fixed by npm itself. So you need to fix the issues yourself.
Upvotes: 0
Related Questions
- how to fix npm audit error with loadVirtual and ENOLOCK?
- npm audit fix --force never able to avoid vulnerabilities
- When I install Axios an audit error occurs
- How to fix npm audit fix issues?
- npm audit return 400 Bad Request
- ReactJS : Moderate severity vulnerabilities while running create react-app
- npm audit fix --force is not fixing any problems
- npm Audit on project gives many errors
- Npm audit issues
- NPM Audit fixes