Closed almothafar closed 5 years ago
This module is not intended to be deployed to a remote server where these vulnerabilities can be exploited, it is intended as a CLI tool to run on your local development machine which only you have access to, hence they are irrelevant.
It seems this module is kinda critical to use and not recommended:
When I run
npm audit > npm-audit.log
I get like all details for all issues, and all related to this module, file attached (npm-audit.log) since it is really big, but for critical and high one:Critical Paths:
High Paths: