NPM security warnings when build/run using docker-compose (#194) · Issues · Roberto José TORO OLMEDO / BrainBox

NPM security warnings when build/run using docker-compose

Created by: willfurnass

Commit 762128e1,
Docker: 18.04.0-ce
docker-compose: 1.21.2

sudo docker-compose up
...
Attaching to brainbox_db_1, brainbox_web_1
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=1.1.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 2 high, and 1 low vulnerabilities. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=0.8.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] sshpk has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=sshpk&version=1.13.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] tough-cookie has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=tough-cookie&version=2.3.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] send has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=send&version=0.9.3 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=3.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] randomatic has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=randomatic&version=1.1.7 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] negotiator has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=negotiator&version=0.4.9 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.0.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ms has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ms&version=0.6.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] mime has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=mime&version=1.2.11 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.17.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] https-proxy-agent has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=https-proxy-agent&version=2.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] hoek has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=hoek&version=4.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] fresh has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=fresh&version=0.2.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] forwarded has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=forwarded&version=0.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] cookie-signature has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=cookie-signature&version=1.0.5 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.16.6 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.

*Created by: willfurnass*

* Commit 762128e1ae949e0065b91af1b03cc1eab19b0249, 
* Docker: 18.04.0-ce
* docker-compose: 1.21.2

```
sudo docker-compose up
...
Attaching to brainbox_db_1, brainbox_web_1
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=1.1.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 2 high, and 1 low vulnerabilities. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=0.8.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] sshpk has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=sshpk&version=1.13.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] tough-cookie has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=tough-cookie&version=2.3.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] send has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=send&version=0.9.3 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=3.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] randomatic has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=randomatic&version=1.1.7 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] negotiator has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=negotiator&version=0.4.9 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.0.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ms has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ms&version=0.6.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] mime has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=mime&version=1.2.11 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.17.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] https-proxy-agent has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=https-proxy-agent&version=2.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] hoek has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=hoek&version=4.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] fresh has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=fresh&version=0.2.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] forwarded has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=forwarded&version=0.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] cookie-signature has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=cookie-signature&version=1.0.5 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.16.6 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
```

To upload designs, you'll need to enable LFS. More information