Тёмный

Fix NPM Vulnerabilities with NPM Overrides - Secure NOW! 

PixemWeb
Подписаться 46 тыс.
Просмотров 18 тыс.
50% 1
ВидеоПоделитьсяСкачатьДобавить в

LATEST: Fix NPM Vulnerabilities with NPM Overrides in order to secure your Packages and Dependencies. This is an updated video to the one I released last year.
Previous NPM Overrides Video:
• How to Fix Vulnerabili...
It's important to secure your NPM packages by ensuring you're using the latest, updated dependencies. Unfortunately some packages don't always update some of their dependencies which can open you up to vulnerabilities.
In this video I show you how to use NPM Overrides to make sure you're using the updated versions and your projects will be more secure.
This is part of an ongoing effort to help people learn to code. I use my DevWP WordPress Development Training Theme as a demonstration, but this will work with other projects as well.
Learn to Create a Custom WordPress Theme with DevWP:
• Master WordPress Theme...
Make sure to follow the steps closely and to always backup your projects.
#npm #nodejs #javascript

Опубликовано:

 

22 авг 2024

Поделиться:

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист
Посмотреть позже
Комментарии : 18   
@vivekiyer9273
@vivekiyer9273 2 месяца назад
literally saved 5 days of work. Thank you soo much!!
@PixemWeb
@PixemWeb 2 месяца назад
Glad it helped!
@houcinehannoun6578
@houcinehannoun6578 7 месяцев назад
You are a life saver, thank you bro
@PixemWeb
@PixemWeb 7 месяцев назад
Happy to help.
@swamidhyananurag85
@swamidhyananurag85 10 месяцев назад
Thank you for such short and effective solution!
@mr_don_key
@mr_don_key 4 месяца назад
but what about, when you keep these overrides? you fall behind eventually and it's quite labor intensive changing these overrides over and over... What is a package stops in development? (maintainer quits, no ownership transfer.. abandoned lib in essence) If you remove it, it can lead to breakage of other things.. Yet, it's vulnerable.. using an alternative package, can also lead to breaks, since it might not support the needed elements or communicates differently (function names, class names etc, which would mean rewriting you logic code.) Also, who audits this? and on what level? (security, stability, features, etc)
@VideoWow7184
@VideoWow7184 3 месяца назад
We use a tool called renovate to help automatically keep npm packages upto date. If you haven't used Renovate before, it will watch for new versions of packages you are using and create a PR for them. You can even configure it on a package by package bases to automatically merge the PRs immediately or after a stabilization period. It is silver bullet as there are package incompatibilities as you have mentioned above that break tests, lint, etc that you need to fix manually but it does cut down the amount of effort overall when managing many npm packages. It also means that your always up to date so upgrading packages becomes easier since the gap between your current version and the target version will be much smaller.
@aadeeshjain1
@aadeeshjain1 4 месяца назад
Thanks You Saved My life and earned a subscriber
@rioeleven1
@rioeleven1 6 месяцев назад
thank you, it worked.
@Franck_Polla
@Franck_Polla 9 месяцев назад
hello, i followed your instructions , but i still have this message : ode_modules/ws auto-reload-brunch
@Franck_Polla
@Franck_Polla 9 месяцев назад
Could you help me with that ?
@sazeebulbashar5686
@sazeebulbashar5686 Год назад
Thank You Bro. God bless you.......
@mumk
@mumk 4 месяца назад
Thanks so much
@jorgeloyola3317
@jorgeloyola3317 3 месяца назад
man, i love u
@user-us6un4us2e
@user-us6un4us2e 11 месяцев назад
Without npm update can we fix vulnerabilities
@PunkSage
@PunkSage 11 месяцев назад
How to use overrides in monorepo?
@PhilDiasPJD
@PhilDiasPJD Год назад
Does overrides with npm packages work the same way with yarn?
@PixemWeb
@PixemWeb Год назад
I believe you would use resolutions. I’d have to look into it to see if things have changed since yarn classic versus modern.
Далее
How npm resolves dependency hell | Must know!
9:56
How npm resolves dependency hell | Must know!
Просмотров 8 тыс.
What is NPM Audit?
10:40
What is NPM Audit?
Просмотров 9 тыс.
НИКИТА СДЕЛАЛ ПРЕДЛОЖЕНИЕ ЛЕРЕ? 😍
01:00
НИКИТА СДЕЛАЛ ПРЕДЛОЖЕНИЕ ЛЕРЕ? 😍
Просмотров 79 тыс.
Тренд ты мой зайчик по очереди 🐰
00:10
Тренд ты мой зайчик по очереди 🐰
Просмотров 149 тыс.
ДВАЖДЫ ВДОВЕЦ #независимый #сольныйконцерт #бебуришвили #приколы #стендап #outside #mediumquality
00:54
ДВАЖДЫ ВДОВЕЦ #независимый #сольныйконцерт #бебуришвили #приколы #стендап #outside #mediumquality
Просмотров 69 тыс.
Обвиняемым в теракте в Крокусе продлили арест #россия #крокусситихолл #shorts
00:36
Обвиняемым в теракте в Крокусе продлили арест #россия #крокусситихолл #shorts
Просмотров 411 тыс.
How to Fix Vulnerability Issues in Node.JS & Gulp with NPM Override
11:55
How to Fix Vulnerability Issues in Node.JS & Gulp with NPM Override
Просмотров 11 тыс.
Coding Was HARD Until I Learned These 3 Things...
10:43
Coding Was HARD Until I Learned These 3 Things...
Просмотров 144 тыс.
Is PHP Dead | Does PHP Have a Future
15:42
Is PHP Dead | Does PHP Have a Future
Просмотров 1,8 тыс.
State of AI Replacing Programmers - Latest Updates!
8:48
State of AI Replacing Programmers - Latest Updates!
Просмотров 9 тыс.
Why Most Self-Taught Developers Never Land The Job
7:28
Why Most Self-Taught Developers Never Land The Job
Просмотров 154 тыс.
Node.js, how to solve vulnerability issues?
13:13
Node.js, how to solve vulnerability issues?
Просмотров 74 тыс.
How to Safely Update NPM Packages
5:16
How to Safely Update NPM Packages
Просмотров 28 тыс.
How is THIS Coding Assistant FREE?
5:19
How is THIS Coding Assistant FREE?
Просмотров 146 тыс.
Web Developer Roadmap (2024) - Everything is Changing
25:02
Web Developer Roadmap (2024) - Everything is Changing
Просмотров 354 тыс.
Winning Facebook (Meta) Hacker Cup Qual Round 2022?
53:55
Winning Facebook (Meta) Hacker Cup Qual Round 2022?
Просмотров 2,4 млн
НИКИТА СДЕЛАЛ ПРЕДЛОЖЕНИЕ ЛЕРЕ? 😍
01:00
НИКИТА СДЕЛАЛ ПРЕДЛОЖЕНИЕ ЛЕРЕ? 😍
Просмотров 79 тыс.