You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Jan 14, 2022. It is now read-only.
I am tring using npm audit to check if any discovered vulenity in dependency package, after I ran
"npm audit fix --force" ,It's still have this security issue:
OS: macOS 10.13.6
version:0.2.10
Mac :: ~/ProductiveTools/SnippetStore » npm audit
=== npm audit security report ===
Run npm update cryptiles --depth 4 to resolve 1 vulnerability
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High │ Insufficient Entropy │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ cryptiles │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ universal-analytics │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ universal-analytics > request > hawk > cryptiles │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://nodesecurity.io/advisories/720 │
└───────────────┴──────────────────────────────────────────────────────────────┘
found 1 high severity vulnerability in 42614 scanned packages
run npm audit fix to fix 1 of them.
The text was updated successfully, but these errors were encountered:
I am tring using npm audit to check if any discovered vulenity in dependency package, after I ran
"npm audit fix --force" ,It's still have this security issue:
OS: macOS 10.13.6
version:0.2.10
Mac :: ~/ProductiveTools/SnippetStore » npm audit
Run npm update cryptiles --depth 4 to resolve 1 vulnerability
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High │ Insufficient Entropy │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ cryptiles │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ universal-analytics │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ universal-analytics > request > hawk > cryptiles │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://nodesecurity.io/advisories/720 │
└───────────────┴──────────────────────────────────────────────────────────────┘
found 1 high severity vulnerability in 42614 scanned packages
run
npm audit fix
to fix 1 of them.The text was updated successfully, but these errors were encountered: