iOS Development

ios – Excessive severity vulnerabilities intalling react-native-config

Spread the love


When I attempt to set up react-native-config in my react native mission on ios I at all times get the identical output:


141 packages are on the lookout for funding
  run `npm fund` for particulars

5 excessive severity vulnerabilities

To handle all points (together with breaking adjustments), run:
  npm audit repair --force

Run `npm audit` for particulars.

Irrespective of how I do it

npm set up react-native-config
npm i react-native-config
npm set up github:lugg/react-native-config

I’ve tried to reinstall my mission from scratch a number of instances.
I’ve put in react-native-config from each npm and github repositories.
I’ve executed npm audit:

# npm audit report

ip  *
Severity: excessive
NPM IP bundle susceptible to Server-Facet Request Forgery (SSRF) assaults - https://github.com/advisories/GHSA-78xj-cgh5-2h22
repair out there through `npm audit repair --force`
Will set up [email protected], which is a breaking change
node_modules/ip
  @react-native-community/cli-doctor  *
  Is dependent upon susceptible variations of ip
  node_modules/@react-native-community/cli-doctor
    @react-native-community/cli  >=4.13.0
    Is dependent upon susceptible variations of @react-native-community/cli-doctor
    Is dependent upon susceptible variations of @react-native-community/cli-hermes
    node_modules/@react-native-community/cli
      react-native  <=0.0.0-ffdfbbec0 || >=0.69.0-rc.0
      Is dependent upon susceptible variations of @react-native-community/cli
      node_modules/react-native
  @react-native-community/cli-hermes  *
  Is dependent upon susceptible variations of ip
  node_modules/@react-native-community/cli-hermes

5 excessive severity vulnerabilities

To handle all points (together with breaking adjustments), run:
  npm audit repair --force

I’ve executed a number of instances npm audit repair --force , which takes me on a loop reinstalling totally different variations of react-native. Ultimately, it takes me again to the identical output.

Leave a Reply

Your email address will not be published. Required fields are marked *