Skip to content
This repository has been archived by the owner on Jun 13, 2024. It is now read-only.

Fix dependency security alerts #5

Open
aral opened this issue Jun 9, 2021 · 0 comments
Open

Fix dependency security alerts #5

aral opened this issue Jun 9, 2021 · 0 comments

Comments

@aral
Copy link
Contributor

aral commented Jun 9, 2021

Two high severity alerts are being reported for cheerio. Update the dependency to fix these.

                       === npm audit security report ===                        
                                                                                
# Run  npm install cheerio@1.0.0-rc.10  to resolve 2 vulnerabilities
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High          │ Denial of Service                                            │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ css-what                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ cheerio                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ cheerio > cheerio-select-tmp > css-select > css-what         │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1754                            │
└───────────────┴──────────────────────────────────────────────────────────────┘


┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High          │ Denial of Service                                            │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ css-what                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ cheerio                                                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ cheerio > cheerio-select-tmp > css-what                      │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1754                            │
└───────────────┴──────────────────────────────────────────────────────────────┘


found 2 high severity vulnerabilities in 130 scanned packages
  run `npm audit fix` to fix 2 of them.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

No branches or pull requests

1 participant