发表新帖
发表新帖

NPM-AUDIT find to high vulnerabilities. What am I supposed to do?

前端 未结
关注
7 2087
清歌不尽
清歌不尽 2021-02-19 11:16

npm audit run on my project and got me this

High Command Injection
Dependency of @angular-devkit/build-angular [dev]

7条回答
  • 遥遥无期
    遥遥无期 (楼主)
    2021-02-19 11:28

    1. Remove the tree-kill package from the node_modules folder & Delete
      the package-lock.json file.

    2. Find @angular-devkit/build-angular folder in the node_modules folder and edit the package.json file; change tree-kill version from 1.2.1 to 1.2.2
      Find @ngtools/webpack in the node_modules folder and edit the package.json file; change tree-kill version from 1.2.1 to 1.2.2

    3. run npm install.

    0 讨论(0)
 看不清?
提交回复
热议问题