DEV Community

Anna Villarreal
Anna Villarreal

Posted on

Vulnerabilities: Cause for Concern

So, it's a bit alarming when your terminal is showing you all kinds of vulnerabilities. After running npm audit and npm audit fix, I see a slew of red flags. So, of course, I traversed the web in search of answers. After updating everything multiple times and trying different versions, I only ended up with more red flags.

xmldom critical vulnerabilities

Which vulnerabilities should I be concerned about? After reading several forums and blogs, it seems as though having some vulnerabilities at any point is almost unescapable.

I saw that you can force some things by tweaking the package-lock.json file. I also saw that some things will say "No fix available" Well, thats not very comforting.

vulnerabilities

I'm interested in hearing about how you manage your vulnerabilities - and how do we know if they are a cause for concern? I'd love to hear you're feedback and recommendations. Thank you!

Image of Docusign

🛠️ Bring your solution into Docusign. Reach over 1.6M customers.

Docusign is now extensible. Overcome challenges with disconnected products and inaccessible data by bringing your solutions into Docusign and publishing to 1.6M customers in the App Center.

Learn more

Top comments (0)

Image of Docusign

🛠️ Bring your solution into Docusign. Reach over 1.6M customers.

Docusign is now extensible. Overcome challenges with disconnected products and inaccessible data by bringing your solutions into Docusign and publishing to 1.6M customers in the App Center.

Learn more

đź‘‹ Kindness is contagious

Immerse yourself in a wealth of knowledge with this piece, supported by the inclusive DEV Community—every developer, no matter where they are in their journey, is invited to contribute to our collective wisdom.

A simple “thank you” goes a long way—express your gratitude below in the comments!

Gathering insights enriches our journey on DEV and fortifies our community ties. Did you find this article valuable? Taking a moment to thank the author can have a significant impact.

Okay