如何解决:42个漏洞(3低,15中等,24高)?
如何解决:42个漏洞(3低,15中等,24高)?
提问于 2021-10-26 12:32:02
以下是我的设置:
My Environment and Version: nodeJS: v14.18.1 npm: 8.1.1 expo: 4.12.10 OS: MacOS Big Sur 11.6
My package.json:
{
"main": "node_modules/expo/AppEntry.js",
"scripts": {
"start": "expo start",
"android": "expo start --android",
"ios": "expo start --ios",
"web": "expo start --web",
"eject": "expo eject"
},
"dependencies": {
"axios": "^0.24.0",
"expo": "^1.0.0",
"expo-status-bar": "~1.1.0",
"react": "17.0.1",
"react-dom": "17.0.1",
"react-native": "^0.66.1",
"react-native-camera": "^4.2.1",
"react-native-web": "0.17.1",
"react-navigation": "^4.4.4"
},
"devDependencies": {
"@babel/core": "^7.12.9"
},
"private": true
}在npm安装之后,在这个命令之后,我收到如下消息:npm安装后的错误消息
42漏洞(3低,15中等,24高)
在这条消息之后,我尝试了:npm更新-遗留对等-deps
现在我得到:31漏洞(8中度,23高)
当我尝试使用npm审计修复时,我得到以下内容:无法解析依赖树
以下是日志的全文:
# npm resolution error report
2021-10-26T12:26:46.860Z
While resolving: rcapp@undefined
Found: react@17.0.1
node_modules/react
react@"17.0.1" from the root project
Could not resolve dependency:
peer react@"17.0.2" from react-native@0.66.1
node_modules/react-native
react-native@"^0.66.1" from the root project
Fix the upstream dependency conflict, or retry
this command with --force, or --legacy-peer-deps
to accept an incorrect (and potentially broken) dependency resolution.
Raw JSON explanation object:
{
"code": "ERESOLVE",
"current": {
"name": "react",
"version": "17.0.1",
"whileInstalling": {
"name": "rcapp",
"path": "/Users/maksimpaun/Desktop/sdaibox-terra/reclub/rcapp"
},
"location": "node_modules/react",
"isWorkspace": false,
"dependents": [
{
"type": "prod",
"name": "react",
"spec": "17.0.1",
"from": {
"location": "/Users/maksimpaun/Desktop/sdaibox-terra/reclub/rcapp"
}
}
]
},
"currentEdge": {
"type": "prod",
"name": "react",
"spec": "17.0.1",
"from": {
"location": "/Users/maksimpaun/Desktop/sdaibox-terra/reclub/rcapp"
}
},
"edge": {
"type": "peer",
"name": "react",
"spec": "17.0.2",
"error": "INVALID",
"from": {
"name": "react-native",
"version": "0.66.1",
"whileInstalling": {
"name": "rcapp",
"path": "/Users/maksimpaun/Desktop/sdaibox-terra/reclub/rcapp"
},
"location": "node_modules/react-native",
"isWorkspace": false,
"dependents": [
{
"type": "prod",
"name": "react-native",
"spec": "^0.66.1",
"from": {
"location": "/Users/maksimpaun/Desktop/sdaibox-terra/reclub/rcapp"
}
}
]
}
},
"strictPeerDeps": false,
"force": false
}因此,在此之后,我尝试使用:npm审计修复--遗留的对等程序,但是它没有帮助。
这个项目本身似乎没有问题,但是这么多的错误让我担心。
请告诉我如何识别它们并修复它们。
提前感谢您的帮助!
回答 1
Stack Overflow用户
发布于 2021-10-26 14:49:26
第一步
删除node_modules文件夹。
第二步
将包更新为最新版本。这样改变你的package.json:
"dependencies": {
"axios": "^0.24.0",
"expo": "^43.0.1 ",
"expo-status-bar": "^1.1.0",
"react": "^17.0.2",
"react-dom": "^17.0.2",
"react-native": "^0.66.1",
"react-native-camera": "^4.2.1",
"react-native-web": "^0.17.5",
"react-navigation": "^4.4.4"
},
"devDependencies": {
"@babel/core": "^7.15.8"
},第三步
做npm install
第四步
检查漏洞是否已修复。
页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/69723168
复制相关文章
相似问题
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号