问题描述
我正在尝试使用 webpack 设置一个新项目并想设置 postcss,但是在安装 postcss-preset-env 时我收到错误消息:
在 592 个扫描包中发现 34 个中等严重性漏洞 34 个漏洞需要人工审查。详情请参阅完整报告。
日志说错误已经用postcss 版本>=8.2.10 修补,我使用的是8.3.0。和 postcss-loader 版本 ^5.3.0??
报告:
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > autoprefixer > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > css-blank-pseudo > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > css-has-pseudo > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > css-prefers-color-scheme > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-attribute-case-insensitive >
postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-color-functional-notation >
postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-color-gray > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-color-hex-alpha > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-color-mod-function > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-color-rebeccapurple > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-custom-media > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-custom-properties > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-custom-selectors > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-dir-pseudo-class > postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-double-position-gradients >
postcss
More info https://npmjs.com/advisories/1693
Moderate Regular Expression Denial of Service
Package postcss
Patched in >=8.2.10
Dependency of postcss-preset-env [dev]
Path postcss-preset-env > postcss-env-function > postcss
More info https://npmjs.com/advisories/1693
解决方法
暂无找到可以解决该程序问题的有效方法,小编努力寻找整理中!
如果你已经找到好的解决方法,欢迎将解决方案带上本链接一起发送给小编。
小编邮箱:dio#foxmail.com (将#修改为@)