Proposal to run "npm audit fix" after installation #3771
Unanswered
AntonOnyshch
asked this question in
Q&A
Replies: 2 comments 1 reply
-
@AntonOnyshch Sorry for the late updates, we have turned off our dependabot for updating the dependencies since it would be much more annoying. As you mentioned we need to find out the vulnerable packages that we depended on and upgrade it cc @sxzz . |
Beta Was this translation helpful? Give feedback.
0 replies
-
These vulnerable packages are all dev dependencies, which does not seem to do any harm to the production environment. |
Beta Was this translation helpful? Give feedback.
1 reply
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Getting started with command
npm install element-plus --save
shows me proposal to run
npm audit fix
What does it mean?
My package.json
Beta Was this translation helpful? Give feedback.
All reactions