Skip to content
This repository has been archived by the owner on Feb 28, 2024. It is now read-only.

lodash Prototype Pollution vulnerability still exists #5

Open
ecormaksin opened this issue Jul 27, 2019 · 0 comments
Open

lodash Prototype Pollution vulnerability still exists #5

ecormaksin opened this issue Jul 27, 2019 · 0 comments

Comments

@ecormaksin
Copy link

ecormaksin commented Jul 27, 2019
edited
Loading

After I executed npm install, 510 vulnerabilities were founded.
So I executed the following commands in order.

npm audit fix
npm audit
npm install --save-dev [email protected]
npm audit fix
npm update json-server
npm audit fix

Is the above procedure correct?

However, [email protected] Prototype Pollution vulnerability still exists.

When I execute npm run dev, the server seems to start.

Do I need to fix the vulnerability?
But [email protected] requires [email protected].
How can I do fix the vulnerability?

Any help will be appriciated.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ecormaksin