Skip to content

npm audit ansi-regex #108

New issue
New issue
Open
#109
Open
npm audit ansi-regex#108
#109
@kmalakoff

Description

@kmalakoff
kmalakoff
opened on Oct 9, 2021

I'm getting these nm audit warnings. Can you please update the dependency on ansi-regex for this module?

ansi-regex >2.1.1 <5.0.1
Severity: moderate
Inefficient Regular Expression Complexity in chalk/ansi-regex - GHSA-93q8-gq69-wqmw
fix available via npm audit fix --force
Will install karma-mocha-reporter@2.2.3, which is a breaking change
node_modules/inquirer-autosubmit-prompt/node_modules/ansi-regex
node_modules/inquirer-autosubmit-prompt/node_modules/string-width/node_modules/ansi-regex
node_modules/karma-mocha-reporter/node_modules/ansi-regex
node_modules/wrap-ansi/node_modules/ansi-regex
strip-ansi 4.0.0 - 5.2.0
Depends on vulnerable versions of ansi-regex
node_modules/inquirer-autosubmit-prompt/node_modules/string-width/node_modules/strip-ansi
node_modules/inquirer-autosubmit-prompt/node_modules/strip-ansi
node_modules/karma-mocha-reporter/node_modules/strip-ansi
node_modules/wrap-ansi/node_modules/strip-ansi
inquirer 3.2.0 - 7.0.4
Depends on vulnerable versions of string-width
Depends on vulnerable versions of strip-ansi
node_modules/inquirer-autosubmit-prompt/node_modules/inquirer
inquirer-autosubmit-prompt *
Depends on vulnerable versions of inquirer
node_modules/inquirer-autosubmit-prompt
listr-input >=0.2.0
Depends on vulnerable versions of inquirer-autosubmit-prompt
node_modules/listr-input
np >=4.0.0
Depends on vulnerable versions of listr
Depends on vulnerable versions of listr-input
node_modules/np
karma-mocha-reporter >=2.2.4
Depends on vulnerable versions of strip-ansi
node_modules/karma-mocha-reporter
string-width 2.1.0 - 4.1.0
Depends on vulnerable versions of strip-ansi
node_modules/inquirer-autosubmit-prompt/node_modules/string-width
node_modules/wrap-ansi/node_modules/string-width
wrap-ansi 3.0.0 - 6.1.0
Depends on vulnerable versions of string-width
Depends on vulnerable versions of strip-ansi
node_modules/wrap-ansi
log-update 2.1.0 - 3.4.0
Depends on vulnerable versions of wrap-ansi
node_modules/log-update
listr-update-renderer >=0.5.0
Depends on vulnerable versions of log-update
node_modules/listr-update-renderer
listr >=0.14.3
Depends on vulnerable versions of listr-update-renderer
node_modules/listr

12 moderate severity vulnerabilities

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions