Get a peek at our latest innovations at Sanity Product Day on Dec 8th →

Is it Necessary to Run npm Audit Fix on a Starter Template?

2 replies
Last updated: Nov 7, 2020

Is it necessary to run npm audit fix on a starter template? These are vulnerabilities that are found in the tools used to create the site, not the site itself that is public-facing, right?

Nov 7, 2020, 7:24 PM

They tend to be in the dev servers and can mostly be ignored since what ends up on the internet is mostly static pages. That being said, we should generally try to ship these with the audit done so you don’t get the warnings :)

Nov 7, 2020, 9:06 PM

Right that’s what I thought, I build with the 11ty/Sanity starter template you guys made and there were a ton of reported vulnerabilities when I cloned the repo to WebStorm

Nov 7, 2020, 9:09 PM

Sanity.io: Get the most out of your content

Sanity.io is a platform to build websites and applications. It comes with great APIs that let you treat content like data. Free to get started, and pay-as-you-go on all plans. Find out more.