Ashishkumar Pandey
08/13/2021, 10:09 AM❯ npm audit
# npm audit report
jszip <3.7.0
Severity: moderate
Prototype Pollution - <https://npmjs.com/advisories/1774>
fix available via `npm audit fix --force`
Will install @serverless-stack/resources@0.4.5, which is a breaking change
node_modules/jszip
zip-local *
Depends on vulnerable versions of jszip
node_modules/zip-local
@serverless-stack/resources >=0.5.0
Depends on vulnerable versions of zip-local
node_modules/@serverless-stack/resources
@serverless-stack/cli >=0.5.0
Depends on vulnerable versions of @serverless-stack/resources
node_modules/@serverless-stack/cli
4 moderate severity vulnerabilities
To address all issues (including breaking changes), run:
npm audit fix --force
this is for 0.38.0Frank
Ashishkumar Pandey
08/13/2021, 3:34 PM