Is it Necessary to Run npm Audit Fix on a Starter Template?

2 replies

Last updated: Nov 7, 2020

Is it necessary to run npm audit fix on a starter template? These are vulnerabilities that are found in the tools used to create the site, not the site itself that is public-facing, right?

Nov 7, 2020, 7:24 PM

They tend to be in the dev servers and can mostly be ignored since what ends up on the internet is mostly static pages. That being said, we should generally try to ship these with the audit done so you don’t get the warnings :)

Nov 7, 2020, 9:06 PM

Right that’s what I thought, I build with the 11ty/Sanity starter template you guys made and there were a ton of reported vulnerabilities when I cloned the repo to WebStorm

Nov 7, 2020, 9:09 PM

Sanity.io – build remarkable experiences at scale

Sanity is a customizable solution that treats content as data to power your digital business. Free to get started, and pay-as-you-go on all plans.

Get started Watch demo

Is it Necessary to Run npm Audit Fix on a Starter Template?

Sanity.io – build remarkable experiences at scale

Categorized in