create-contentful-app icon indicating copy to clipboard operation
create-contentful-app copied to clipboard

Published 20 hours ago verified publisher icon contentful

Vulnerabilities warning

Open knynkwl opened this issue 2 years ago • 1 comments

Node: v18.8.0 npm: 8.18.0

# npm audit report

nth-check  <2.0.1
Severity: high
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      @svgr/plugin-svgo  <=5.5.0
      Depends on vulnerable versions of svgo
      node_modules/@svgr/plugin-svgo
        @svgr/webpack  4.0.0 - 5.5.0
        Depends on vulnerable versions of @svgr/plugin-svgo
        node_modules/@svgr/webpack
          react-scripts  >=2.1.4
          Depends on vulnerable versions of @svgr/webpack
          node_modules/react-scripts

6 high severity vulnerabilities

To address all issues (including breaking changes), run:
  npm audit fix --force

knynkwl avatar Jul 18 '23 13:07 knynkwl

Looks to be an issue with svgr

Fixed with:

npm i @svgr/webpack -D

# added to package.json

"overrides": {
    "@svgr/webpack": "$@svgr/webpack"
},

knynkwl avatar Jul 18 '23 14:07 knynkwl