How to close GitHub Security Alerts
Published in
Apr 6, 2021
I have a lot of security alerts from GitHub, and they showed me this kind of security alerts like acorn, minimist, lodash, etc, I really need to upgrade these alerts and closed the issues.
For me, I needed to upgrade the yarn.lock using this command
yarn upgradeFor others, you could use npm
npm audit fixAfter that you need to use git add, and commit the changes and make push to your own repository and the problem will be closed, they will email you the closed issuen
npm audit fix --force
Conclusion
If you are here for security reasons this will help you to ensure the security of all yours projects because every day there are more vulnerabilities and every day we need to ensure the security of our projects even dough our projects are smaller than other ones.
