Ranter
Join devRant
Do all the things like
++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatar
Sign Up
Pipeless API
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple API
Learn More
Comments
-
npm audit is the ultimate “tool that cried wolf”. If it ever actual finds a real vulnerability, how the fuck will we know?!
Good idea. Terrible execution. -
Mm, yes, the classic "let's run audit to fix it" when a dependency requires a dependency with a vulnerability in it. Fun times.
-
I feel like a people in my environment are dedicated to dropping 20 years of their lives without noticing and have succeeded
-
@Root what to use? I said in interview i can do some frintend . Hopefully i will not need working with npm :)
-
Root797343y
-
On the other hand, the majority of that 44 are probably also present in the older versions, just nobody researches them.
The fuck did I do wrong?
So I had 11 vulnerabilities 1 high.
I just npm audit fix
Now it’s 44 vulnerabilities
rant