New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

found 1 low severity vulnerability ... error #2585

atifsari opened this Issue Oct 9, 2018 · 4 comments


None yet
4 participants

atifsari commented Oct 9, 2018

Note: this is the technical bug tracker, please use other platforms for getting support and starting a (non technical) discussion. See the getting help page for details.
I just installed gekko on c:\ at the end I get this message error "node-pre-gyp WARN Using request for node-pre-gyp https download
[sqlite3] Success: "C:\gekko-develop\node_modules\sqlite3\lib\binding\node-v57-win32-x64\node_sqlite3.node" is installed via remote
added 213 packages from 175 contributors and audited 520 packages in 30.892s
found 1 low severity vulnerability
run npm audit fix to fix them, or npm audit for details"

I'm submitting a ...
[ ] bug report
[ ] question about the decisions made in the repository

Action taken (what you did)

I run npm audit fix to fix them
Expected result (what you hoped would happen)
gave me another message " npm audit fix --force" and I follow it

Actual result (unexpected outcome)
gave me this last message :

npm WARN using --force I sure hope you know what you are doing.

  • lodash@4.17.11
    updated 1 package in 2.225s
    fixed 1 of 1 vulnerability in 520 scanned packages
    1 package update for 1 vuln involved breaking changes
    (installed due to --force option)

I tried to reinstall it in different locations ... still, I get no combo box on the config page

Other information (e.g. detailed explanation, stacktraces, related issues, suggestions how to fix, links for us to have context, eg. stackoverflow, etc)


This comment has been minimized.


askmike commented Oct 10, 2018

I run npm audit fix to fix them

Don't do this! The problem is that a part of a library used everywhere in Gekko (called Lodash) had a security issue (in a function Gekko does not use, as such there is no security issue when running Gekko). I'm in the process of updating the complete the usage in this lib in the complete gekko codebase so this message won't show. But that's not done yet.


This comment has been minimized.

atifsari commented Oct 11, 2018

Thank you ... I solve it by using bash on windows.


This comment has been minimized.

gekkocu commented Oct 29, 2018

hello, i have no skill about coding ,and i installed helping internet video and installed gekko but there was visible only 2 exchange poloniex and bitfinex thats way i searched another tutorial about installing but now gekko broken , and i guess if i reinstall it i think it can work again , how to uninstall it ? could you help me please ? thanks


This comment has been minimized.

Lucky21110 commented Nov 12, 2018

Thank you ... I solve it by using bash on windows.

How did you solve it ? Can you explain a bit ?

I tried multiple things but all combox box are still empty.


Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment