Тёмный
No video :(

How to Fix Vulnerability Issues in Node.JS & Gulp with NPM Override 

PixemWeb
Подписаться 46 тыс.
Просмотров 12 тыс.
50% 1
ВидеоПоделитьсяСкачатьДобавить в

In this video I show you how to use NPM Override and NPM Audit Fix to resolve vulnerability issues in Node.JS, Gulp, or any task manager or bundler that uses Node.js like Webpack, Grunt etc.
UPDATED VIDEO:
• Fix NPM Vulnerabilitie...
Vulnerability issues are common when using these tools. Especially if the packages or modules aren't maintained.
NPM does a good job notifying you if there are any vulnerability issues that you should be aware of.
Sometimes you will want to use NPM Overrides, and other times you'll want to use NPM Audit Fix. I explain both options.
Make sure to always test thoroughly to make sure everything works as expected.
In this video, I particularly demonstrate how to fix the security issues in Node.JS and in Gulp. But the process is also applicable with the other tools I mentioned.
#nodejs #npm #gulp

Опубликовано:

 

22 авг 2024

Поделиться:

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист
Посмотреть позже
Комментарии : 35   
@PixemWeb
@PixemWeb Год назад
*UPDATED NPM Video* ru-vid.com/video/%D0%B2%D0%B8%D0%B4%D0%B5%D0%BE-VAHkHj3I6Wg.html
@UBO58
@UBO58 Год назад
11ty drove me crazy with some vulnerable packages / dependencies. So you explained exactly what I was looking for. Thanks a lot man!
@gophius
@gophius 5 месяцев назад
Excellent tip, worked like a charm!
@uttkarshpatel8947
@uttkarshpatel8947 Год назад
Thank You very much, i was getting 4 vulnerabilities because of semver, but after using override to version 7.5.3, it was fixed
@PixemWeb
@PixemWeb Год назад
Glad it helped. 🙌
@iulianpet-fy4qd
@iulianpet-fy4qd Год назад
First comment ever on RU-vid, you're the man!. Thank you for sharing knowledge. Just subscribed! And thumb up!
@j.r.r.tolkien8724
@j.r.r.tolkien8724 Год назад
Great explanation. Thanks a lot.
@PixemWeb
@PixemWeb Год назад
No problem, I’m glad it helped. Thanks for watching 🙏
@shoelaced
@shoelaced Год назад
Thank YOU. I was getting so sick of the Dependabot alerts about glob-parent.
@jakubgadzala7474
@jakubgadzala7474 Год назад
Thanks man, solved the problem. Subscribed.
@PixemWeb
@PixemWeb Год назад
Awesome, glad it helped.
@rlxpudding2056
@rlxpudding2056 Год назад
Thank you very, you are awesome. Your tut helped me so much!
@PixemWeb
@PixemWeb Год назад
No problem. I’m glad it was helpful. Thanks for watching 🙏🙏
@ok_basil
@ok_basil Год назад
Thank you very much! Worked like a charm!!
@RisingMooon
@RisingMooon Год назад
Thank you so much for this video! The gulp vulnerability messages were driving me crazy
@qaziarsalanshah5184
@qaziarsalanshah5184 Год назад
Really helpful 👍
@PixemWeb
@PixemWeb Год назад
Thanks 🙏
@user-ti9py9pg4t
@user-ti9py9pg4t Год назад
man this really helped me thanks
@PhilDiasPJD
@PhilDiasPJD Год назад
Awesome video and extremely helpful. If say you were using Yarn instead of npm, would you follow a similar approach with the overrides? Thanks
@PixemWeb
@PixemWeb Год назад
With Yarn, you would use resolutions instead. The concept is the same, just different terminology. Thanks for the question, and for watching.
@PhilDiasPJD
@PhilDiasPJD Год назад
@@PixemWeb just had a quick look at resolutions. Like you say, the concept is the same. Thanks.
@aizatariq3347
@aizatariq3347 Год назад
How did you know which version of chokidar, glob-parent to override?
@user-gf6gh2fm7f
@user-gf6gh2fm7f 11 месяцев назад
It's really useful!
@shabanlukyamuzi4012
@shabanlukyamuzi4012 Год назад
THANK YOU SIR!!👍
@aliabdel-shaheed1124
@aliabdel-shaheed1124 Год назад
thanks alot 😍
@user-zi8dz2fo7c
@user-zi8dz2fo7c Год назад
Thanks a lot
@DriveChannel-dy6dg
@DriveChannel-dy6dg 26 дней назад
hi. when I copy an image using this syntax src/styles/**/*.scss . Then gulp cannot copy the images
@ZukoTheShinigami
@ZukoTheShinigami Год назад
THANK YOU SO MUCH!!!
@KvWater
@KvWater Год назад
very epic
@SLCODEGEN
@SLCODEGEN Год назад
Yes it works
@aizatariq3347
@aizatariq3347 Год назад
How did you know which version of chokidar, glob-parent to override?
@PixemWeb
@PixemWeb Год назад
I went to NPM and looked for the current version. Then I tested to make sure that using it wouldn’t cause problems with my workflow.
@VinceM1000
@VinceM1000 Год назад
This is great and I have used this on a couple of projects. A new high severity vulnerability has come up and it looks bad. How do I fix ua-parser-js 0.8.1 - 1.0.32? Would this be an override as well? How would I go about doing this one?
@VinceM1000
@VinceM1000 Год назад
I tried to do an override but it didn't work it says node_modules/browser-sync/node_modules/ua-parser-js browser-sync >=2.27.6 Depends on vulnerable versions of ua-parser-js node_modules/browser-sync
@LEGORAYStudios
@LEGORAYStudios Год назад
Nope, it generates more vulnerabilities with that command for some reason. I just ended deleting my npm project and start from full scratch.
Далее
Gulp 4 Tutorial with Node JS, ImageMin, Browser Sync, SASS, SourceMaps, CleanCSS & More
1:13:25
Gulp 4 Tutorial with Node JS, ImageMin, Browser Sync, SASS, SourceMaps, CleanCSS & More
Просмотров 31 тыс.
What is NPM Audit?
10:40
What is NPM Audit?
Просмотров 9 тыс.
Хантер VS Панда. ВЫЗОВЫ от АКАБА и Бобрышева. СТРАШНАЯ СЕЧКА - Док VS Курбанов. Донателло VS Джахар
1:40:16
Хантер VS Панда. ВЫЗОВЫ от АКАБА и Бобрышева. СТРАШНАЯ СЕЧКА - Док VS Курбанов. Донателло VS Джахар
Просмотров 688 тыс.
Коля Киргиз жив?! Новое видео из Санкт-Петербурга шокирует криминальный мир!
01:00
Коля Киргиз жив?! Новое видео из Санкт-Петербурга шокирует криминальный мир!
Просмотров 91 тыс.
ПЕРВЫЙ ОПЫТ #независимый #бебуришвили #standup #outside #юмор #стендап #comedy #mediumquality
01:00
ПЕРВЫЙ ОПЫТ #независимый #бебуришвили #standup #outside #юмор #стендап #comedy #mediumquality
Просмотров 169 тыс.
Все о работе в М Видео. Как разводят покупателей в магазинах.
1:01:46
Все о работе в М Видео. Как разводят покупателей в магазинах.
Просмотров 192 тыс.
How to Safely Update NPM Packages
5:16
How to Safely Update NPM Packages
Просмотров 28 тыс.
Node.js, how to solve vulnerability issues?
13:13
Node.js, how to solve vulnerability issues?
Просмотров 74 тыс.
How to Become a WordPress Developer
11:02
How to Become a WordPress Developer
Просмотров 6 тыс.
Let's deal with npm vulnerabilities by Siddharth Ajmera | #AngularSydney
27:01
Let's deal with npm vulnerabilities by Siddharth Ajmera | #AngularSydney
Просмотров 7 тыс.
The Story of Next.js
12:13
The Story of Next.js
Просмотров 565 тыс.
My Favorite Computer Science Programming Project of All Time (how I broke the coding barrier)
13:54
My Favorite Computer Science Programming Project of All Time (how I broke the coding barrier)
Просмотров 274 тыс.
Website Hacking Demos using Cross-Site Scripting (XSS) - it's just too easy!
34:52
Website Hacking Demos using Cross-Site Scripting (XSS) - it's just too easy!
Просмотров 322 тыс.
I Cannot Believe TypeScript Recommends You Do This!
7:45
I Cannot Believe TypeScript Recommends You Do This!
Просмотров 169 тыс.
Node.js is a serious thing now… (2023)
8:18
Node.js is a serious thing now… (2023)
Просмотров 641 тыс.
Writing Secure Node Code: Understanding and Avoiding the Most Common Node.js Security Mistakes
22:30
Writing Secure Node Code: Understanding and Avoiding the Most Common Node.js Security Mistakes
Просмотров 121 тыс.
Хантер VS Панда. ВЫЗОВЫ от АКАБА и Бобрышева. СТРАШНАЯ СЕЧКА - Док VS Курбанов. Донателло VS Джахар
1:40:16
Хантер VS Панда. ВЫЗОВЫ от АКАБА и Бобрышева. СТРАШНАЯ СЕЧКА - Док VS Курбанов. Донателло VS Джахар
Просмотров 688 тыс.