Stack Overflow
Stack Overflow

Questions tagged [npm-audit]

`npm audit` is a command in the npm CLI that runs a security audit on a project/package to check for any known vulnerabilities.

npm audit is a command in the npm CLI that runs a security audit on a project/package to check for any known vulnerabilities.

###Reference:

132 questions
0
votes
1 answer

NativeScript 8.0.0: NPM vulnerabilites switching between "3 high" to "30 high"

I am currently working on a NativeScript project that uses NativeScript core ~8.0.0 and I just ran an npm install and realized that there are 3 high vulnerabilities. When I try to fix them using npm audit fix (even with --force flag) I end up having…
luke1110
  • 73
  • 5
0
votes
1 answer

`npm audit --production` still warns of vulnerabilities despite moving package to `devDependencies`

I created a react app with npx create-react-app myapp and was flooded with vulnerabilities. I followed the instructions in this github issue and moved the package to devDependencies in my package.json file, since any "vulnerabilies" would only exist…
Timothy Pulliam
  • 132
  • 1
  • 9
  • 25
0
votes
1 answer

NPM Audit Error -- Regular expression denial of service

<-----CLOSED SOLVED ----> I am learning how to use Angulur. I am getting 5 moderate errors that I could not solve inside of a project folder. I had spent 2 all days on it without a success. I hope one of you could tell me how to remedy this. I…
Karen
  • 23
  • 2
0
votes
1 answer

Configure local proxy for the npm audit with Apache

Based on this one https://github.com/chovyy/npm-audit-proxy In this case Nexus OSS v3 manager running behind Apache reverse proxy. There is need to proxy npm audit as well from https://registry.npmjs.org/-/npm/v1/security/audits/. So how to…
vasja
  • 11
  • 1
0
votes
0 answers

'npm audit' fix or 'npm audit'

I get this when I try installing @angular/cdk: run npm audit fix to fix them, or npm audit. Is this version conflicts that occur when I install? I'm assuming that conflicts that occur in package.json causes this. Can some one tell why this occurs…
Eranki
  • 750
  • 1
  • 11
  • 30
0
votes
1 answer

Found 1 low severity vulnerability in 1620 scanned packages during cretating new reactjs app

I am facing an error during creating a new Reactjs app, this error message displayed on the command line => found 1 low severity vulnerability in 1620 scanned packages
Ahtisham Ali
  • 1
0
votes
1 answer

How do I fix the security vulnerabilites in my Gatsby Dev Blog?

I have a dev blog, and I'm seeing 14 security alerts, with some of them have high severity, critical severity, and moderate severity. So, I ran npm audit to see the problem, and it gave me this. found 1403 vulnerabilities (792 low, 17 moderate,…
hellraiser999
  • 91
  • 2
  • 13
0
votes
1 answer

Where do NPM audit warnings come from?

From what I can glean from the docs, The audit command submits a description of the dependencies configured in your project to your default registry and asks for a report of known vulnerabilities. So there is an NPM registry out there, I assume…
Bondolin
  • 2,793
  • 7
  • 34
  • 62
0
votes
1 answer

NPM update dependencies of dependencies

I am currently having problem a updating NPM package tree-kill which is a dependency of @angular-devkit/build-angular. tree-kill 1.2.1 has a security advisory issued https://nodesecurity.io/advisories/1432 which is currently failing builds in my CI…
ChrisMB
  • 113
  • 1
  • 5
0
votes
0 answers

How to fix npm audit issues and unable to find npm plugin in rug.config in eclipse after installation

When I run npm audit fix it says fixed 0 of 2 vulnerabilities in 11294 scanned packages 2 vulnerabilities required manual review and could not be updated. Please provide any suggestion to resolve the this…
Sai
  • 41
  • 4
0
votes
2 answers

NPM throws error on "audit fix" - Configured registry is not supported

Since last night i'm getting the following error: npm ERR! code ENOAUDIT npm ERR! audit Your configured registry (https://registry.npmjs.org/) does not support audit requests. npm ERR! A complete log of this run can be found in: npm ERR! …
Ron
  • 149
  • 2
  • 16
-1
votes
0 answers

Errors after trying to install react router

I get the following errors while trying to install react router from terminal with npm install react-router-dom: added 3 packages, and audited 1505 packages in 2m 240 packages are looking for funding run `npm fund` for details 6 high severity…
Yvanna Emmanuelle
  • 11
  • 1
1 2 3
8
9