ashx3s/README.md

Last active November 18, 2021 05:52

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Select an option

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/ashx3s/52a4356d5cb7eee315d71493c693b59b.js"></script>
Save ashx3s/52a4356d5cb7eee315d71493c693b59b to your computer and use it in GitHub Desktop.

Download ZIP

Fix NPM Vulnerabilities

Raw

README.md

Fix NPM Vulnerabilities

Fixing npm security vulnerabilities can be daunting but isn't too difficult. These steps should get you through most fixes. This process will work for both npm and yarn setups (just change the commands).

Perform an audit to figure out what packages are causing the vulnerabilities

npm audit

The audit will show the affected packages.

Add the packages and versions to the package.json. Make sure to use the right version numbers

{
  "resolutions": {
    "package-name": "^3.2.1",
    "other-package": "^1.2.3"
  }
}

Then add this to the package.json.
- Review the package documentation.
- If you're using yarn, check yarn's selective dependency resolutions

{
  "scripts": {
    "preinstall": "npx npm-force-resolutions"
  }
}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

ashx3s/README.md

Select an option

No results found

Select an option

No results found

Fix NPM Vulnerabilities