New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
npm audit: 4 vulnerabilities found in verdaccio dependencies #691
Comments
Refers to sass/node-sass#2355 |
Refers to caolan/async#1532 |
Refers to unclechu/node-deep-extend#41 |
Aditional info, this is the report over master (v3 beta):
|
@juanpicado Good Work. Master with the new commit and only with production dependencies result:
|
👍 👍 👍 👍 thanks @todojs for the report |
i am also have this problem,i am currently to build an apps using ionic and want to use firebase but this type of report is shown when i am using npm audit,hope someone can guide me.tq. === npm audit security report ===
Low Prototype Pollution Package lodash Patched in >=4.17.5 Dependency of cordova-android Path cordova-android > cordova-common > plist > xmlbuilder > More info https://nodesecurity.io/advisories/577 [!] 1 vulnerability found - Packages audited: 3792 (3246 dev, 304 optional) |
If you run the npm audit over verdaccio, this is the result:
The text was updated successfully, but these errors were encountered: