DEVHIDE
Login Or Sign up

msal-node using old jsonwebtoken npm pkg triggering npm audit issue

212 Views Asked by At

we are using mssql npm package it has dependency with like below:

mssql > tedious > @azure/identity > @azure/msal-node > jsonwebtoken

Now we are getting below audit error: https://github.com/advisories/GHSA-27h2-hvpr-p74q npm-audit-error

Any one already having this issue and know any workaround?

npm jwt azure-ad-msal tedious azure-identity
Original Q&A
1

There are 1 best solutions below

0
Dmytro Sokhach On

As a temporary measure, I had to use yarn's Selective dependency resolutions https://classic.yarnpkg.com/en/docs/selective-version-resolutions/

in package.json:

"resolutions": {
    "@azure/msal-node": "^1.17.0"
  }

Related Questions in NPM

Related Questions in JWT

Related Questions in AZURE-AD-MSAL

Related Questions in TEDIOUS

Related Questions in AZURE-IDENTITY

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json

Popular Questions

.

Copyright © 2021 Jogjafile Inc.