public-pool icon indicating copy to clipboard operation
public-pool copied to clipboard
verified publisher icon benjamin-wilson

npm fails in docker build on pi4

Open ArmanTheParman opened this issue 1 year ago • 0 comments

Trying to add Public Pool to my node package software (Parmanode)...

I got it working on Mac no problem. But on a Pi4, same install script, the build command fails.

docker build -t public_pool . ... ... parman@parmanodl:~/pool $ npm audit fix

up to date, audited 987 packages in 8s

148 packages are looking for funding run npm fund for details

npm audit report

request * Severity: moderate Server-Side Request Forgery in Request - https://github.com/advisories/GHSA-p8p7-x288-28g6 Depends on vulnerable versions of tough-cookie fix available via npm audit fix --force Will install [email protected], which is a breaking change node_modules/request request-promise-core * Depends on vulnerable versions of request node_modules/@cypress/request-promise/node_modules/request-promise-core node_modules/request-promise-core @cypress/request-promise * Depends on vulnerable versions of request-promise-core node_modules/@cypress/request-promise node-telegram-bot-api >=0.64.0 Depends on vulnerable versions of @cypress/request-promise node_modules/node-telegram-bot-api request-promise-native >=1.0.0 Depends on vulnerable versions of request Depends on vulnerable versions of request-promise-core Depends on vulnerable versions of tough-cookie node_modules/request-promise-native rpc-request <=4.0.10 Depends on vulnerable versions of request Depends on vulnerable versions of request-promise-native node_modules/rpc-request rpc-bitcoin * Depends on vulnerable versions of rpc-request node_modules/rpc-bitcoin

tough-cookie <4.1.3 Severity: moderate tough-cookie Prototype Pollution vulnerability - https://github.com/advisories/GHSA-72xf-g2v4-qvf3 fix available via npm audit fix --force Will install [email protected], which is a breaking change node_modules/tough-cookie

8 moderate severity vulnerabilities

To address issues that do not require attention, run: npm audit fix

To address all issues possible (including breaking changes), run: npm audit fix --force

Some issues need review, and may require choosing a different dependency.

ArmanTheParman avatar Feb 10 '24 17:02 ArmanTheParman