Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Weird wording in "It can be removed" message #76

Closed
alert-debug opened this issue Mar 18, 2022 · 6 comments
Closed

Weird wording in "It can be removed" message #76

alert-debug opened this issue Mar 18, 2022 · 6 comments
Assignees
@jeemok
Labels
bug Something isn't working good first issue Good for newcomers

Comments

@alert-debug
Copy link

I've just been updating some dependencies of a project I'm working on, and an npm run audit produced this message before the All good!:

2 of the excluded vulnerabilities did not match any of the found vulnerabilities: 1064653, 1064843. They can be removed from the .nsprc file or --exclude -x flags. 1 of the ignored modules did not match any of the found vulnerabilites: . It can be removed from the --module-ignore -m flags.

There are two problems with this:

  • It looks like a (one element) list is missing in the text any of the found vulnerabilites: .
  • The word vulnerabilites should be vulnerabilities (which has the correct spelling the other two times it occurs).

Sorry for reporting these minor issues in this fantastic software, but hopefully they are easy fixes. 😄
@jeemok
Copy link
Owner

jeemok commented Mar 19, 2022

ah, nice catch @alertme-edwin! I'm looking at this message now too, let me fix it together

@jeemok jeemok added bug Something isn't working good first issue Good for newcomers labels Mar 19, 2022
@jeemok jeemok self-assigned this Mar 19, 2022
@jeemok jeemok added the WIP Work in progress label Mar 19, 2022
@jeemok jeemok mentioned this issue Mar 19, 2022
Merged
@jeemok jeemok removed the WIP Work in progress label Mar 19, 2022
@jeemok
Copy link
Owner

jeemok commented Mar 19, 2022

hey, @alertme-edwin I've published the fix under v3.7.1, please let me know if there is any issue :) thank you as always!

@jeemok jeemok closed this as completed Mar 19, 2022
@huineng
Copy link

huineng commented Mar 21, 2022

doesn't seem to work, i have not excluded anything, .nprmc file is empty and i have this message

1 of the ignored modules did not match any of the found vulnerabilities: . It can be removed from the --module-ignore -m flags.

this message appears "after" upgrading to 3.7.2, with 3.6.0 i didn't have that message

ps when i fill in a "dummy" entry in .npmrc i see this message, it might help you debugging

1 of the excluded vulnerabilities did not match any of the found vulnerabilities: 1064864. 
It can be removed from the .nsprc file or --exclude -x flags. 
1 of the ignored modules did not match any of the found vulnerabilities: . 
It can be removed from the --module-ignore -m flags.

thanks

@jeemok
Copy link
Owner

jeemok commented Mar 21, 2022

thanks for reporting @huineng. In your testing, do you mean 1064864 is correctly showing but not the modules? Could you provide me with these details:

  • which npm version are you running on?
  • what command and flags did you run?

I'm suspecting you might have accidentally passed in empty value with the ignore-module flag, but either way it would probably be good to check on falsy value before rendering the message. let me publish a fix...

@jeemok
Copy link
Owner

jeemok commented Mar 21, 2022

@huineng can you try again on v3.7.3?

@huineng
Copy link

huineng commented Mar 21, 2022

All good !

image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jeemok jeemok

Labels
bug Something isn't working good first issue Good for newcomers
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@huineng @alert-debug @jeemok