发表新帖
发表新帖

How do I fix a vulnerable npm package in my package-lock.json that isn't listed in the package.json?

后端 未结
关注
9 1985
面向向阳花
面向向阳花 2020-12-07 19:44

Github is telling me that a dependency in my package-lock.json file is vulnerable and outdated. The problem is that if I do npm install or npm update

9条回答
  • 被撕碎了的回忆
    被撕碎了的回忆 (楼主)
    2020-12-07 20:13

    I had this issue and found that it was because the server on which I was running npm had an old version of npm on it- package-lock.json is only supported by newer versions.

    0 讨论(0)
 看不清?
提交回复
热议问题