Is it Necessary to Run npm Audit Fix on a Starter Template?
Last updated: Nov 7, 2020
Is it necessary to run npm audit fix on a starter template? These are vulnerabilities that are found in the tools used to create the site, not the site itself that is public-facing, right?
Nov 7, 2020, 7:24 PM
They tend to be in the dev servers and can mostly be ignored since what ends up on the internet is mostly static pages. That being said, we should generally try to ship these with the audit done so you don’t get the warnings :)
Nov 7, 2020, 9:06 PM
Right that’s what I thought, I build with the 11ty/Sanity starter template you guys made and there were a ton of reported vulnerabilities when I cloned the repo to WebStorm