No video :(

How to Scan, Analyze and Fix Security Vulnerabilities using NPM AUDIT & Retire.js.

Подписаться 17 тыс.

Просмотров 27 тыс.

50% 1

npm audit is a new feature, introduced with npm@6
Update npm version: npm i -g npm@latest
Please like, share and subscribe if you found the video useful.
Checkout the Playlists:
👉 FrontEnd JavaScript Interview Questions: • #4 JavaScript Intervie...
👉 JavaScript Tutorials:
• Difference Between var...
👉 Essentials for Web developers:
• How Does the Browser C...
👉 React Hooks & Latest concepts:
• Rules of Hooks In Reac...
👉 HTML Tutorials:
• WebStorage APIs Sessio...
👉 CSS Tutorials:
• How Does CSS Work | Th...
👉 Coding Challenges:
• Coding Challenge #5: A...
👉 Best Practices & Common mistakes:
• Best Practices of Usin...
👉 React js for Beginners:
• Why To Use JSX in Reac...
👉 Things To Know As JavaScript/FrontEnd Developer:
• Things To Know As Java...
LIKE | SHARE | SUBSCRIBE 😊
#javascript #reactjs #react #webdevelopment #frontenddevelopment #uidevelopment
#javascriptinterviewquestions #interviewquestions #codingchallenges
👇👇👇
Follow me on
Telegram: t.me/+HTxs0I-J...
Instagram: / rethinkingui
Twitter: / suresh9058
LinkedIn: / suresh-mende-a1a20459

Опубликовано:

22 авг 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 46

@anthonyradin7166 3 года назад

The little noise a 4:51 is golden. Thank you for the laugh on a boring work day.

@SIDESH0W 2 года назад

Simple, straight forward and it fixed my issue. Many thanks.

@RethinkingUI 2 года назад

Thank u

@moonshadowwlb Год назад

thanks a lot brother

@RethinkingUI Год назад

Thank you. Please share the video

@criminalgaming4778 2 года назад

hey i get 27 vulnerabilities.... but iam about to build a web app just for a college assignment.... i wanna know will my web application work even with those vulnerabilities? ... coz have just created the app and its starting to show vulnerabilities, every one on utube talks abt fixing this issue in already ongong app... so i decided to ignore and start building... will it work??

@thewisecoder4128 3 года назад

Well explained! Keep up the good work.

@RethinkingUI 3 года назад

Thank u

@manishboge9420 2 года назад

Thanks for sharing. A must-know information.

@RethinkingUI 2 года назад

Thank u

@mohdsahil226 3 года назад

Great Tutorial! Please add more videos!

@RethinkingUI 3 года назад

Sure

@chauhanvipul2009 2 года назад

Excellent job brother..

@RethinkingUI 2 года назад

Thank u

@srinivasabalaji8511 2 года назад

Thanks!

@scharger100 3 года назад

My npm audit doesn't show anything when i command it and 3 moderate vulnerabilitys are ruining my tris to uses shortid

@anandsingavarapu7747 Год назад

hi what if i want to swap every two characters in a string could you please explain that

@RethinkingUI Год назад

Sure will try to do a video on that

@anandsingavarapu7747 Год назад

@@RethinkingUI Thank you please do it soon ❤

@archanamuthukrishnan6465 2 года назад

Hello Sir I am facing some vulnerabilities like "denial of service in hapi" "Insufficient Entropy in cryptiles" how to resolve those.

@dhakshinamoorthy1215 2 года назад

Thanks bro

@pavithrant7591 3 года назад

Thanks for nice explainaition. So if I want to get only critical issues mean, which npm command we need to run and get it?

@RethinkingUI 3 года назад

Thanks For watching. As per the document we have this npm audit --audit-level=critical But this is not working. As a workaround try this npm audit | grep critical -B3 -A10

@pavithrant7591 3 года назад

@@RethinkingUI thanks it is working. Package: ssri Dependency of: npm Path : npm > ssri My issue is like , need to update the npm ssri ... package.json file , I cant able to see the ssri package...it is available under npm package.json file. Package-lock.json We can't able to edit right, so if I change the npm latest version also it's not working... So how we need to fix it?

@DVBhai 3 года назад

Very well explained Sir!! Just a small question, I have 2 high vulnerabilities, and the helping link tells Remediation: Upgrade to version 5.0.1 or later, I don't know how to do it, please help.

@RethinkingUI 3 года назад

Upgrade to 5.0.1 version npm I packagename@5.0.1. And check the same compatibility with ur application

@DVBhai 3 года назад

I did npm i react-scripts@latest -S for updating but nothing happened vulnerabilities are still there.

@RethinkingUI 3 года назад

Check which packages and versions ur getting issue

@DVBhai 3 года назад

@@RethinkingUI sir could u plz the command for updating to that version?

@DVBhai 3 года назад

@@RethinkingUI package is react-scripts > optimize-css-assets-webpack-plugin > cssnano > cssnano-preset-default > postcss-svgo > svgo > css-select > css-what

@kausarfatima9598 3 года назад

the terminal is asking to use `npm audit fix --force` and even after doing this..the vulnerability remains please help!

@RethinkingUI 3 года назад

We should not use npm audit fix - - force. Try to address those issues manually. If we do force audit fix we may get version compatibility issues. Do npm audit and when we get list of issues, along with the issue we will get link below it how to fix it. Try that

@kevinm5898 3 года назад

I have NPM version 7.10.0, but when I run npm audit, it doesn't look the same like it does on your screen. Why?

@RethinkingUI 3 года назад

We need to run npm audit in any of the react, Angular or vuejs applications. In which package.json dependencies available.

@dhakshinamoorthy1215 2 года назад

Bro what is the comment for install react router

@RethinkingUI 2 года назад

npm i react-router

@GaneshKumar-sk2rp 3 года назад

For me it shows http is not defined But I installed every packages What to do

@RethinkingUI 3 года назад

When ur getting http is not defined, While u running application or when u run npm audit.

@GaneshKumar-sk2rp 3 года назад

@@RethinkingUI when running my program also it shows createserver is not defined

@RethinkingUI 3 года назад

@@GaneshKumar-sk2rp if ur getting this issue, when ur running ur application. Then its related to ur application issue. This video about identifying the security issues with npm audit.

@pavithrant7591 3 года назад

Hi Some of the dependency issues are resolved by lower versions. For example , hammerjs 2.0.8 causing CRITICAL vulnerability issue. But if I changed to lower version 2.0.2 ,then issue resolved. How is it working?

@RethinkingUI 3 года назад

If u get any critical issues. Its better to upgrade the version instead downgrade. Ur issue resolved bcoz critical issue is present in 2.0.8 version not on 2.0.2 version.

@pavithrant7591 3 года назад

Even though issue s resolved, is it good way to put lower version?