several npm warnings when installing ^1.1.0 #8

softprops · 2018-12-24T10:24:54Z

given

    "dependencies": {
        "node-pagerduty": "^1.1.0",
    }

I get warnings about a request library that is not installed by default which is a bit confusing

npm i
npm WARN request-promise-core@1.1.1 requires a peer of request@^2.34 but none is installed. You must install peer dependencies yourself.
npm WARN request-promise-native@1.0.5 requires a peer of request@^2.34 but none is installed. You must install peer dependencies yourself.

after manually adding "request": "^2.88.0" to my dependencies

I see the following warnings

found 8 moderate severity vulnerabilities
  run `npm audit fix` to fix them, or `npm audit` for details

most of these seem to relate to node-pagerduty > request > hawk

I'm newish to node dependency management. Are these warnings expected?

The text was updated successfully, but these errors were encountered:

kmart2234 · 2019-01-02T18:05:52Z

I will take a look at this.

kmart2234 · 2019-01-02T18:25:38Z

This issue is resolved in version 1.1.1

softprops · 2019-01-03T06:33:31Z

verified in my project. thanks @kmart2234 !

softprops mentioned this issue Dec 30, 2018

deal with npm audit softprops/serverless-oncall#5

Closed

kmart2234 added the bug label Jan 2, 2019

kmart2234 self-assigned this Jan 2, 2019

kmart2234 closed this as completed Jan 2, 2019

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

several npm warnings when installing ^1.1.0 #8

several npm warnings when installing ^1.1.0 #8

softprops commented Dec 24, 2018

kmart2234 commented Jan 2, 2019

kmart2234 commented Jan 2, 2019

softprops commented Jan 3, 2019

several npm warnings when installing ^1.1.0 #8

several npm warnings when installing ^1.1.0 #8

Comments

softprops commented Dec 24, 2018

kmart2234 commented Jan 2, 2019

kmart2234 commented Jan 2, 2019

softprops commented Jan 3, 2019