severity vulnerability
Unanswered
Blanc de Hotot posted this in #help-forum
Blanc de HototOP
I keep getting vulnerabilities every time I have initialised a new project today:
Is this just something where I can't do anything about it for now?
Or is something else wrong
added 138 packages, and audited 139 packages in 11s
31 packages are looking for funding
run `npm fund` for details
3 moderate severity vulnerabilities
To address all issues (including breaking changes), run:
npm audit fix --force
Run `npm audit` for details.
Initialized a git repository.npm audit fix --force doesn't do anything.Is this just something where I can't do anything about it for now?
Or is something else wrong
5 Replies
Northeast Congo Lion
when I run
npm audit it shows me a whole bunch of jest packages that need to be upgraded. What does that show for you?Lucky you that have only 3 moderate vulnerabilities 😂
Jokes aside, check with
npm audit what are the vulnerabilities, most of the times you can just ignore themAlso
npn audit fix --force is often a bad idea@D Trombett Also `npn audit fix --force` is often a bad idea
I second this. Typically you should only worry about the highs when it’s high it’s for a good reason I’ve found. At least usually.