👀 See Sanity in action: Watch product demo now →

Is it necessary to run npm audit fix?

3 replies
Last updated: Nov 7, 2020
Is it necessary to run npm audit fix on a starter template? These are vulnerabilities that are found in the tools used to create the site, not the site itself that is public-facing, right?
Nov 7, 2020, 7:24 PM
They tend to be in the dev servers and can mostly be ignored since what ends up on the internet is mostly static pages. That being said, we should generally try to ship these with the audit done so you don’t get the warnings :)
Nov 7, 2020, 9:06 PM
They tend to be in the dev servers and can mostly be ignored since what ends up on the internet is mostly static pages. That being said, we should generally try to ship these with the audit done so you don’t get the warnings :)
Nov 7, 2020, 9:06 PM
Right that’s what I thought, I build with the 11ty/Sanity starter template you guys made and there were a ton of reported vulnerabilities when I cloned the repo to WebStorm
Nov 7, 2020, 9:09 PM

Sanity.io – build remarkable experiences at scale

Sanity is a customizable solution that treats content as data to power your digital business. Free to get started, and pay-as-you-go on all plans.