npm install vulnaribilities are different for different projects
Why would installing the same node package on two different projects lead to two different audit results? One has no vulnerabilties, one has two.
I can edit this description with information about the projects as needed.
One project contains no other modules, one contains a load of them. They're being run on the same computer.
Every time you run npm install it collects a description of all the dependencies added to your project, sends it to the registry and asks for a report of known vulnerabilities. So the reason for different output is that in the second project you do have some vulnerable dependencies.
You can run npm audit to see the details about vulnerable dependencies in the second project.
If you do not want npm install to audit dependencies, you can run it with --no-audit argument.
- I want to install the "n" package and I get an error
- n <version> command does not activate specified version
- Change n install location
- How to install a specific version of Node on Ubuntu/Debian?
- Different node version for different projects, is there a way of telling node which version to use?
- Install Node.js to install n to install Node.js?
- How to select the latest node.js v6 version using n?
- n-install: ERROR: GNU Make not found, which is required for operation
- How to downgrade Node version with n
- how switch to previous version in n (Node version manager)?
- Automatically use the right version of Node for a package
- internal/modules/cjs/loader.js:905 -> throw err;
- Why doesn't "n" downgrade my node version on a Mac?
- Node version manager
- n failed to install/switch node in Linux?
- vue command not found on Mac
- How to uninstall n and all node versions installed by n
- Angular CLI on HTTPS - can't install CI as root
- n (node version manager): cannot create directory
- npm module n emits errors
- How to update npm permanently?
- Cannot change nodejs version using n
- upgrade nodejs to stable version
- How should I install and use multiple versions of Node on the same production machine?