NPM vulnerabilities

vev · August 9, 2021, 11:17pm

Hello everybody . I have run npm install glob-parent and i have a response :‘found 3 moderate severity vulnerabilities’ .After that i run npm audit and the return was

Moderate Regular expression denial of service

Package glob-parent

Patched in >=5.1.2

Dependency of react-scripts

Path react-scripts > webpack > watchpack > watchpack-chokidar2 >
chokidar > glob-parent

More info npm

I tried to upgrade glob-parent to the latest version but i have the same problem
What can i do?

kevinSmith · August 10, 2021, 12:05am

I think you would have to ask the maintainer of the package to fix it, or you would have to fork it and fix it yourself.

When I look on the issues on the repo . One of the contributors seems to assert here that this was fixed in version version 6. Did you install that?

system · February 8, 2022, 12:05pm

This topic was automatically closed 182 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
1 vulnerability requires manual review in ReactJS JavaScript	4	1298	June 1, 2021
Npm audit, shows vulnerabilities despite vulnerability-free packages being installed	3	1722	January 17, 2021
Help updating npm dependency	5	2537	January 16, 2021
Updating packages (npm) JavaScript	3	497	December 21, 2021
Https://www.freecodecamp.org/learn/apis-and-microservices/managing-packages-with-npm/how-to-use-package.json-the-core-of-any-node.js-project-or-npm-package JavaScript	9	812	June 1, 2021

NPM vulnerabilities

Related topics