Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Lots of vulnerabilities in UI #932

Closed
tazio opened this issue Apr 9, 2024 · 2 comments
Closed

Lots of vulnerabilities in UI #932

tazio opened this issue Apr 9, 2024 · 2 comments
Labels
bug Something isn't working

Comments

@tazio
Copy link

tazio commented Apr 9, 2024

Describe the bug
After running:
photoview/ui $ npm install

at the end of the process there is this report:

256 packages are looking for funding
  run `npm fund` for details

41 vulnerabilities (15 moderate, 22 high, 4 critical)

I am using a more modern version of node.js that the one supported, but still this does not look good.
I am following this link for installation.
@tazio tazio added the bug Something isn't working label Apr 9, 2024
@kkovaletp
Copy link
Contributor

Yes, we have a lot of vulnerabilities because of outdated dependencies in the project. You can see a more detailed report at https://github.com/photoview/photoview/blob/ece1de2370f1c03e4ad870b96ea957d1e8fc02b5/vulnerabilities/code/grype-CVEs.html (part of the #910)

@jordy2254
Copy link
Member

Hi @tazio thanks for the report. In this situation this is a duplicate of #920 I will close this issue for that reason. I plan to tackle that issue after I finish up the permissions system stuff unless someone in the comminity takes a look

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@tazio @jordy2254 @kkovaletp