Closed Skrigueztep closed 2 years ago
Solve this issue as well solve: 7162
Please delete node_modules
, package-lock.json
and re-run npm install
in the project.
@vue/cli-service
depends on webpack-dev-server@^4.7.3
, which will automatically resolve to the latest version (it's 4.9.1
at this moment ) on a fresh install.
Version
5.0.1
Environment info
Steps to reproduce
create a new vue (2) project execute npm audit
What is expected?
No vulnerabilities
What is actually happening?
Critical vulnerability in socketjs-client by webpack-dev-server
This issue was solved on webpack-dev-server dependency update (socket-client to v1.6.1), webpack-dev-server current version (v4.9.1) has updated dependency version, please update to webpack-dev-server: 4.9.1