-
**Do you want to request a *feature* or report a *bug*?**
Feature
**What is the current behavior?**
The audit is performed automatically on install, which is great, but there's no way to skip…
-
**Describe the bug**
Current elly mobile app(with react-native) does not have the latest dependencies(npm). This raises a problem on security as well as performance side as the used dependencies migh…
-
The following errors were reported by 5.7.0-dev.20240904 vs 5.5.4
[Pipeline that generated this bug](https://typescript.visualstudio.com/TypeScript/_build?definitionId=48)
[Logs for the pipeline run](…
-
`yarn` team is working on it's own command but it's not ready yet:
https://github.com/yarnpkg/yarn/issues/5808
- Requires `package-lock.json` and `npm`@6.
- Remove `node_modules` directories and …
-
`yarn run improved-yarn-audit --package-json some/path/package.json`
-
### Preliminary Checks
- [X] This issue is not a duplicate. Before opening a new issue, please search existing issues: https://github.com/gatsbyjs/gatsby/issues
- [X] This issue is not a question, fe…
-
First, thank you for your hard work, it's very appreciated! 🤗
__Issue__: We're setting up a CI env to automatically run `check-audit`, and we're setting the `--audit-level` (or alternatively the e…
-
### Steps to reproduce
After upgrading an application from Rails 6.1 to Rails 7.0 the Capistrano deployment fails.
The deployment has always worked (for years) and the application still works fine i…
-
### Describe the bug
unplugin-vue-components is vulnerable to Regular Expression Denial of Service attack. The following description of **GitHub Advisory Database** explains:
The NPM package micro…
-
### Self-service
- [ ] I'd be willing to implement a fix
### Describe the bug
`npm audit --environment production` is showing me audit issues where there are **devDependencies** that include a pack…