npm found 2 vulnerabilities (1 low, 1 critical)

Question

npm found 2 vulnerabilities (1 low, 1 critical)

strange-qwq opened this issue 2 years ago · 0 comments

Plz fix it

E:\project>npm audit
                                                                                
                       === npm audit security report ===


                                 Manual Review
             Some vulnerabilities require your attention to resolve

          Visit https://go.npm.me/audit-guide for additional guidance


  Critical        Command Injection in gm

  Package         gm

  Patched in      >=1.21.1

  Dependency of   barcode

  Path            barcode > gm

  More info       https://github.com/advisories/GHSA-pjh3-jv7w-9jpr


  Low             Regular Expression Denial of Service in debug

  Package         debug

  Patched in      >=2.6.9

  Dependency of   barcode

  Path            barcode > gm > debug

  More info       https://github.com/advisories/GHSA-gxpj-cx7g-858c

found 2 vulnerabilities (1 low, 1 critical) in 160 scanned packages
  2 vulnerabilities require manual review. See the full report for details.