Open dinoluck opened 3 years ago
Have you tried npm audit fix --force
?
Have you tried
npm audit fix --force
?
No, mostly because I saw node-fetch causing issues for other people with other packages when I was looking into it.
This issue is related to packages depending on node-fetch
, to not update their modules and end up with vulnerabilities. But it makes sense because they have to read the new updates of node-fetch
in order to maintain a stable package.
I believe that using --force
flag will get rid of the vulnerability but will create other issues with your face-api
package.
You have two options:
face-api
contributors to fix itI've updated all packages and switched to TFJS 2.0 branch in my fork if you want to try
https://github.com/vladmandic/face-api
After installing face-api.js npm returns low vulnerability that can't be fixed. Output of npm audit:
Running npm audit fix fails.