I've been doing an Angular 9 project for some time now. A while back, a warning popped up about a moderate security vulnarability with the minimist package. However, when I try to fix them with (sudo) npm audit fix, it can't fix these issues, and (sudo) npm update won't update them either, even though they have newer versions. How can I fix this?
You can reproduce this problem with a brand new Angular 9 application; minimist is installed by default. For a new project, they will show up as a 'low' level vulnerability, but I think the gist of it is the same.
At the moment you can't fix it, because angular 9 is not compatible with (new) minimist version, which do not have vulerabilities. You can follow the issues on github: