Highest Voted 'npm-audit' Questions

2

votes

1 answer

Column name documentation for npm audit --parseable?

Does anyone know where I can find column name documentation for npm audit --parseable? I can guess what about half the columns are by comparing it to the default json output, but I'm unsure on some. For example, the Y/N output in the last…

npm audit npm-audit

asked Dec 19 '20 at 14:22

stk1234

1,036
3
12
29

2

votes

1 answer

Your configured registry does not support audit requests ~ On npm audit

I have 1 dependency in a form of "protobufjs": "git+https://github.com/danieldanielecki/protobufjs-angularfire.git#master", i.e. installed using npm install --save https://github.com/danieldanielecki/protobufjs-angularfire#master. Is there any way…

javascript node.js npm continuous-integration npm-audit

asked Aug 17 '19 at 13:56

Daniel Danielecki

8,508
6
68
94

2

votes

0 answers

Insufficient Entropy cryptiles Error resolve

I have warning showing **Insufficient Entropy** error for hapi@16.6.2 Module: cryptiles Published: November 1st 2018 Reported by: Microsoft Vulnerability Research CWE-331 CVE-2018-1000620 Vulnerable: >=3.1.0 <3.1.3 || >=4.0.0 <4.1.2 Patched:…

npm hapi npm-audit

asked Aug 07 '19 at 13:01

Zakir saifi

406
4
23

2

votes

0 answers

Temporarily set npm configuration 'audit-level' to 'critical'

I'm currently running npm audit in a continuous integration setup. I would like to set the npm configuration setting audit-level to critical temporarily. Why?: I would like npm audit to exit with the code 0 on low and medium and high vulnerabilities…

npm npm-audit

asked May 02 '19 at 04:29

etoxin

4,908
3
38
50

2

votes

1 answer

npm audit returns weird dependencies

Npm audit returns output with some valid warnings, but also with weird dependencies that look like random hexadecimal strings. That string changes every time when I run npm audit and is identical for all packages, referenced in audit. How can I get…

javascript npm npm-audit

asked Feb 20 '19 at 08:47

dlxeon

1,932
1
11
14

1

vote

0 answers

Are there alternatives to using "fix available via npm audit fix --force"?

I downloaded a file, still trying to remember the name of it ( I will update, looking for it currently ). I never finished installing it because I seen a message about vulnerabilities and a bunch of critical ones. I immediately reverted what I had…

file terminal operands npm-audit npm-vulnerabilities

asked May 17 '23 at 04:35

AIAssistant

11
2

1

vote

1 answer

loader-utils throwing critical vulnerability error in Angular 13

Recently Upgraded Angular version to 13 and found 5 critical vulnerabilities loader-utils <=1.4.1 || 2.0.0 - 2.0.3 Severity: critical Prototype pollution in webpack loader-utils - https://github.com/advisories/GHSA-76p3-8jx3-jpfq Prototype…

angular npm npm-audit

asked Mar 27 '23 at 07:13

mediocreCoder

47
8

1

vote

0 answers

ignore known vulnerability in npm audit

npm audit is part of my Bitbucket pipeline. I use quill which introduces an XSS vulnerability. It was shipped via cdn, but now my app serves this dependency itself. npm audit now fails because of the XSS. I am not sure yet if this vulnerability is…

security quill npm-audit cve

asked Feb 17 '23 at 14:02

samjaf

1,033
1
9
19

1

vote

0 answers

validationError: Progress plugin invalid options VueJS

There are several vulnerabilities shows in audit fix command in my vue project. When I upgrade @vue/cli-service package to v5.0.8 from v4.5.17, I get progressPlugin error. My other package version are: "dependencies": { "core-js":…

vuejs2 npm-audit vue-cli-5

asked Dec 28 '22 at 06:58

Darshan Soni

21
1
9

1

vote

1 answer

unable to install a package, gives npm audit error

I am trying to install packages and it is throwing this error: sudo npm i @sentry/node up to date, audited 1331 packages in 3s 77 packages are looking for funding run `npm fund` for details 11 vulnerabilities (2 low, 9 high) Some issues need…

npm npm-audit

asked Dec 04 '22 at 07:53

Binayak

31
6

1

vote

1 answer

How to fix endpoint error for npm audit fix?

When I run 'npm audit fix' it returns npm WARN audit Unable to authenticate && npm ERR! audit endpoint returned an error

npm npm-audit

asked Aug 19 '22 at 15:32

user18572424

11
1

1

vote

0 answers

NPM Audit List Only Critical Severity Vulnerabilities

How critical severity vulnerabilities can be listed in a node.js project on windows platform? I have tried: npm audit --audit-level=critical but it still lists all vulnerabilities.

node.js npm npm-audit

asked Aug 11 '22 at 13:43

KosD

61
1
9

1

vote

2 answers

Got allows a redirect to a UNIX socket

# npm audit report got <11.8.5 Severity: moderate Got allows a redirect to a UNIX socket - https://github.com/advisories/GHSA-pfrx-2q88-qq97 fix available via `npm audit fix --force` Will install nodemon@1.3.3, which is a breaking…

npm-scripts npm-audit

asked Jul 01 '22 at 11:41

Irtaza Hussain

39
3

1

vote

1 answer

Vue app will not build - npm audit report says Severity: high / Regular expression denial of service in glob-parent

I am having issues with npm run build on my Vue app since updating npm. I was first receiving some eslint related errors so I updated "eslint": "^6.7.2" To "eslint": "^6.8.0" After this I got a recommendation to run npm audit fix which returns a…

javascript vue.js npm npm-audit

asked May 23 '22 at 18:45

mikeym

5,705
8
42
62

1

vote

1 answer

Overriding nested dependencies in Node.js projects to improve "npm audit" vulnerability report

I got some vulnerabilities resolved in my Node.js project by forcing some nested dependency updates but I need help understanding what's actually happening behind the scene of this improvement. Here is my original "package.json" { "name":…

node.js npm package.json package-lock.json npm-audit

asked Apr 07 '22 at 20:23

AliReza

706
2
10
30

Questions tagged [npm-audit]