wan 我使用 npx create-react-app App_Name 创建新的反应应用程序显示此错误(发现 8 个漏洞)
[英]wan i create new react App using npx create-react-app App_Name Its Show This Error (found 8 vulnerabilities)
问题描述
wan I create a new app in react Command For Create App npx create-react-app Its Shows This error found 8 vulnerabilities (4 moderate, 4 high) in 2166 scanned packages 8 vulnerabilities require manual review. 
wan 我在 react 命令中创建了一个新应用程序,用于创建应用程序npx create-react-app其显示此错误在 2166 个扫描包中发现 8 个漏洞(4 个中等,4 个高) 8 个漏洞需要手动审查。 See the full report for details.有关详细信息,请参阅完整报告。 I'm using the latest version of node.js I run Comment " npm audit fix " Or " npm audit fix --force " But it Not Fix my error Here is All error Command " NPM Audit " I'm using the latest version of node.js I run Comment " npm audit fix " Or " npm audit fix --force " But it Not Fix my error Here is All error Command " NPM Audit "
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=7.0.36 <8.0.0 || >=8.2.10
Dependency of react-scripts
Path react-scripts > resolve-url-loader > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package browserslist
Patched in >=4.16.5
Dependency of react-scripts
Path react-scripts > react-dev-utils > browserslist
More info https://npmjs.com/advisories/1747
Moderate Regular expression denial of service
Package glob-parent
Patched in >=5.1.2
Dependency of react-scripts
Path react-scripts > webpack > watchpack > watchpack-chokidar2 >
chokidar > glob-parent
More info https://npmjs.com/advisories/1751
Moderate Regular expression denial of service
Package glob-parent
Patched in >=5.1.2
Dependency of react-scripts
Path react-scripts > webpack-dev-server > chokidar > glob-parent
More info https://npmjs.com/advisories/1751
High Denial of Service
Package css-what
Patched in >=5.0.1
Dependency of react-scripts
Path react-scripts > @svgr/webpack > @svgr/plugin-svgo > svgo >
css-select > css-what
More info https://npmjs.com/advisories/1754
High Denial of Service
Package css-what
Patched in >=5.0.1
Dependency of react-scripts
Path react-scripts > optimize-css-assets-webpack-plugin > cssnano
> cssnano-preset-default > postcss-svgo > svgo > css-select
> css-what
More info https://npmjs.com/advisories/1754
High Regular Expression Denial of Service
Package normalize-url
Patched in >=4.5.1 <5.0.0 || >=5.3.1 <6.0.0 || >=6.0.1
Dependency of react-scripts
Path react-scripts > mini-css-extract-plugin > normalize-url
More info https://npmjs.com/advisories/1755
High Regular Expression Denial of Service
Package normalize-url
Patched in >=4.5.1 <5.0.0 || >=5.3.1 <6.0.0 || >=6.0.1
Dependency of react-scripts
Path react-scripts > optimize-css-assets-webpack-plugin > cssnano
> cssnano-preset-default > postcss-normalize-url >
normalize-url
More info https://npmjs.com/advisories/1755
found 8 vulnerabilities (4 moderate, 4 high) in 2166 scanned packages
8 vulnerabilities require manual review. See the full report for details.
How Can I fix this error.我该如何解决这个错误。
1 个解决方案
解决方案1
0 已采纳 2021-06-16 06:33:48
See the question I posted couple of weeks ago here postcss 7.0.0 - 8.2.9 Severity: moderate Regular Expression Denial of Service .请参阅我几周前在此处发布的问题postcss 7.0.0 - 8.2.9 Severity:中等正则表达式拒绝服务。
Short answer is there is no patch yet so you should wait or, if you can't afford that, then you will need to use yarn as explained in one of the answers.简短的回答是还没有补丁,所以你应该等待,或者,如果你买不起,那么你将需要使用yarn ,如答案之一所述。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.