Skip to content

GitLab

  • Projects
  • Groups
  • Snippets
  • Help
    • Loading...
  • Help
    • Help
    • Support
    • Community forum
    • Submit feedback
    • Contribute to GitLab
  • Sign in
B
BrainBox
  • Project overview
    • Project overview
    • Details
    • Activity
    • Releases
  • Repository
    • Repository
    • Files
    • Commits
    • Branches
    • Tags
    • Contributors
    • Graph
    • Compare
  • Issues 47
    • Issues 47
    • List
    • Boards
    • Labels
    • Service Desk
    • Milestones
  • Merge Requests 0
    • Merge Requests 0
  • CI / CD
    • CI / CD
    • Pipelines
    • Jobs
    • Schedules
  • Operations
    • Operations
    • Incidents
    • Environments
  • Packages & Registries
    • Packages & Registries
    • Container Registry
  • Analytics
    • Analytics
    • CI / CD
    • Repository
    • Value Stream
  • Wiki
    • Wiki
  • Snippets
    • Snippets
  • Members
    • Members
  • Collapse sidebar
  • Activity
  • Graph
  • Create a new issue
  • Jobs
  • Commits
  • Issue Boards
  • Roberto José TORO OLMEDO
  • BrainBox
  • Issues
  • #194

Closed
Open
Opened May 10, 2018 by Roberto José TORO OLMEDO@rtoMaintainer

NPM security warnings when build/run using docker-compose

Created by: willfurnass

  • Commit 762128e1,
  • Docker: 18.04.0-ce
  • docker-compose: 1.21.2
sudo docker-compose up
...
Attaching to brainbox_db_1, brainbox_web_1
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=1.1.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 2 high, and 1 low vulnerabilities. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=0.8.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] sshpk has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=sshpk&version=1.13.1 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] tough-cookie has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=tough-cookie&version=2.3.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] send has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=send&version=0.9.3 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ws has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ws&version=3.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] randomatic has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=randomatic&version=1.1.7 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] negotiator has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=negotiator&version=0.4.9 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.0.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] ms has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=ms&version=0.6.2 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] mime has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=mime&version=1.2.11 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.17.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] https-proxy-agent has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=https-proxy-agent&version=2.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] hoek has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=hoek&version=4.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] fresh has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=fresh&version=0.2.4 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] forwarded has 1 high vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=forwarded&version=0.1.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] debug has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=debug&version=2.2.0 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] cookie-signature has 1 moderate vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=cookie-signature&version=1.0.5 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
web_1  | npm WARN notice [SECURITY] lodash has 1 low vulnerability. Go here for more details: https://nodesecurity.io/advisories?search=lodash&version=4.16.6 - Run `npm i npm@latest -g` to upgrade your npm version, and then `npm audit` to get more info.
Assignee
Assign to
None
Milestone
None
Assign milestone
Time tracking
None
Due date
None
Reference: rto/BrainBox#194