cedric-anne/glpi

npm audit failed

github-actions opened this issue · 0 comments

github-actions commented 
# npm audit report

underscore  1.3.2 - 1.12.0
Severity: critical
Arbitrary Code Execution in underscore - https://github.com/advisories/GHSA-cf4h-3jhx-xvhq
fix available via `npm audit fix`
node_modules/underscore
  nomnom  >=1.6.0
  Depends on vulnerable versions of underscore
  node_modules/nomnom
    po2json  0.3.1 - 0.4.5
    Depends on vulnerable versions of nomnom
    node_modules/po2json
      gettext.js  0.3.0 - 1.1.1
      Depends on vulnerable versions of po2json
      node_modules/gettext.js

4 critical severity vulnerabilities

To address all issues, run:
  npm audit fix