New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
npm audit async #985
Comments
npm audit report finds the below, how to fix this? It says "no fix available" so my attempt to do an auto fix by
|
Same problem. Helped for me: |
Same happened with me today after installing a library. Removing it, deleting node_modules and package lock file didn't helped.
Would be glad if someone helped. |
Same with a completely new angular project with fully updated packages. |
We need to distinguish what's going on here. The OP is reporting The vulnerability related to Please kindly report this to the Angular CLI folks. I will leave this open for now for visibility |
Have same issue. Got angular eslint v13.0.1 installed but wants to install eslint v12 to fix it:
|
EDIT: actually this is more an issue with ejs/jake which nrwl/devkit is dependent on.
|
Hi @JamesHenry , All versions of async have a Prototype Pollution high vulnerability that has been fixed in 3.2.2 It is up to jake to update their dependency on async cf. #406 #408 |
Jake fixed the vulnerability 6 days ago: jakejs/jake#408 |
|
angular-eslint v14.0.0 was just published and is available on npm and does not contain any negative results from Please check out the release notes for guidance: https://github.com/angular-eslint/angular-eslint/releases/tag/v14.0.0 Many thanks 🙏 |
installed version "@angular-eslint/builder": "13.2.0",
The text was updated successfully, but these errors were encountered: