• Do not register here on develop.twiki.org, login with your twiki.org account.
• Use View topic Item7848 for generic doc work for TWiki-6.1.1. Use View topic Item7851 for doc work on extensions that are not part of a release. More... Close
• Anything you create or change in standard webs (Main, TWiki, Sandbox etc) will be automatically reverted on every SVN update.
Does this site look broken?. Use the LitterTray web for test cases.

Item7872: npm reports many security vulnerabilities for packages in twiki/pub/TWiki/TWikiSheetPlugin/ruleJS

Item Form Data

AppliesTo: Component: Priority: CurrentState: WaitingFor: TargetRelease ReleasedIn
Engine   Normal New      

Edit Form Data

Reported By:
Applies To:
Current State:
Waiting For:
Target Release:
Released In:


In directory twiki/pub/TWiki/TWikiSheetPlugin/ruleJS I ran `npm audit` and it told me:
found 61 vulnerabilities (11 low, 20 moderate, 30 high) in 1678 scanned packages
 run `npm audit fix` to fix 7 of them.
 50 vulnerabilities require semver-major dependency updates.
 4 vulnerabilities require manual review. See the full report for details.
The full text is at https://github.com/rec/test/blob/master/txt/tv.txt

Some of these are serious, like the lodash vulnerability.

Can I turn off and remove TWikiSheetPlugin without consequences past losing that plugin, and what's the best way to do that?

-- TWiki:Main/TomRitchford - 2019-12-03

Summary npm reports many security vulnerabilities for packages in twiki/pub/TWiki/TWikiSheetPlugin/ruleJS
ReportedBy TWiki:Main.TomRitchford

SVN Range TWiki-6.0.2-trunk, Sat, 07 Jul 2018, build 30509
AppliesTo Engine

Priority Normal
CurrentState New




Topic revision: r1 - 2019-12-03 - TomRitchford
This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2024 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback