DEV Community

kobecow
kobecow

Posted on • Updated on

How to update NPM Module for vulnerability

#howto #node #npm #vulnerability

Github Shows security alert!?

After tiny push, I saw security alert on Github.

security_alert image

WOW. I've never seen it before. What should I do?

Step one-by-one.

This is what I did after googling.

1. Look at your security alert.

On my case, It said clean-css needed update.

details of security alert

2. Check your module

On project directory, npm audit executed.
The result was

output of npm audit

3. npm audit fix

npm audit fix executed.

a part of result was

+ pug@2.0.4
removed 3 packages and updated 9 packages in 5.479s

4. Check your module again.

On project directory, npm audit executed.
The result was


                       === npm audit security report ===                        

found 0 vulnerabilities

That's it. Pretty easy pattern.
Let's go back developing.

Top comments (0)

Read next

iamjose profile image

Otimize seu Aplicativo com Cache de Dados usando NestJS e Redis

José Paulo Marinho -

mateustoledo profile image

Biggest lesson learned from Nodejs Documentary

Mateus Toledo -

devmirx profile image

Build a Discord Bot with Discord.js V14: A Step-by-Step Guide

LordCodex -

egeaytin profile image

Building Scalable GraphQL Microservices With Node.js and Docker: A Comprehensive Guide

Ege Aytin -