-
-
Notifications
You must be signed in to change notification settings - Fork 26.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Npx create-react-app: 8 vulnerabilities (2 moderate, 6 high) #13607
Comments
Can I take this issue? |
Has this issue been resolved? I am now encountering the same problem. After installing react-scripts@5.0.1, a security vulnerability has emerged, and it urgently needs to be addressed. |
Experiencing the same issue when creating a new TypeScript application.
Any installs beyond this point are met with the same error above. |
The following code can be added to the package.json file to resolve the issue: "overrides": { |
Ca ne fonctionne pas pour moi, ce code me donner des erreur de lint |
By adding these rules to package.json I no longer have errors reported. For those who couldn't: |
…sues during npm install, see facebook/create-react-app#13607 (comment).
Client Vulnerabilities: To address the 8 vulnerabilities, I updated the package.json with the following overrides and then reinstalled the dependencies: "overrides": { This action resolved the vulnerabilities. |
Thanks, i could able to solve all the vulnerabilities. |
Describe the bug
When I create a new npx create-react-app application and install any dependencies I receive the message: 8 vulnerabilities (2 moderate, 6 high)
Did you try recovering your dependencies?
I've already started other projects from scratch and also performed global npm updates. Unsuccessful.
Environment
Environment Info:
current version of create-react-app: 5.0.1
running from C:\Users\joseg\AppData\Local\npm-cache_npx\c67e74de0542c87c\node_modules\create-react-app
System:
OS: Windows 11 10.0.22631
CPU: (16) x64 11th Gen Intel(R) Core(TM) i7-11800H @ 2.30GHz
Binaries:
Node: 22.2.0 - C:\Program Files\nodejs\node.EXE
Yarn: Not Found
npm: 10.8.1 - C:\Program Files\nodejs\npm.CMD
Browsers:
Chrome: Not Found
Edge: Chromium (125.0.2535.92)
Internet Explorer: 11.0.22621.3527
npmPackages:
react: ^18.3.1 => 18.3.1
react-dom: ^18.3.1 => 18.3.1
react-scripts: 5.0.1 => 5.0.1
npmGlobalPackages:
create-react-app: Not Found
Steps to reproduce
Expected behavior
The correct thing would be not to show any type of error.
Actual behavior
Imagem from error:
After run npm fund
The text was updated successfully, but these errors were encountered: