Closed mikeoptics closed 3 years ago
I removed npm via homebrew and reinstalled the LTS version via the official route. Issue is still present.
This isn't something that we can do anything about or that we have any visibility into. There was indeed a vulnerability that folks at npm reported to us last year, that we then fixed. If npm isn't correctly noticing what version of Sapper you have, that's not something that can be fixed in Sapper.
Describe the bug npm reports a critical advisory for sapper for 0.27.11 even though I have the latest version. npm audit fix does not resolve it.
What I have tried Verifying the cache
npm cache verify
runningnpm ci
removing sapper and reinstalling it.Logs
To Reproduce run
npm audit fix
Expected behavior It should fix it.
Information about your Sapper Installation:
Severity I honestly don't know. It says it's a critical vulnerability in npm but I'm sure it's more of an error in recognising it is up to date.
Additional context Notice how there is a 304 error in the logs? Maybe that's something to do with it? Perhaps the package.json will help?