Fix node package vulnerabilities
Running npm audit
on the app,
It returns:
found 134 vulnerabilities (58 low, 51 moderate, 23 high, 2 critical)
along with a list of vulnerable package.
What should you do?
refer every vulnerable package, there is a link under More info
section( formatted like this:- https://nodesecurity.io/advisories/{issue_number_here}).
You should refer more info section and provide fixes of vulnerable package.
Fix as many as issues as possible and send a merge request.
Refer the image below:-
Please note that if there is a breaking change, you need to fix the breaking change also in the extension and make sure extension is working.