English 中文(简体)
我可以在乌兰巴托安装起重装置箱。 I m 在终端中留下大量错误
原标题:I can t install pm install react-bootstrap bootstrap in Ubuntu. I m getting a lot of errors in the terminal

I m new to the npm world and I apologize for the question. I would like to use Bootstrap with React (React-Bootstrap). I m having trouble installing npm install react-bootstrap bootstrap in Ubuntu. After starting the npx command create-react-app react-bootstrap-app, i enter the folder and start the npm:

install react-bootstrap bootstrap --save command

我会发现错误,可以安装任何东西。 我还尝试再次安装 no和 n。 设想一版<代码>20.10.0和Npm版本10.2.3。 我阅读了有关Stack Overflow或辅导的许多问题,但我可以解决问题。 I m New to npm and I m 有困难。 你们能否帮助我?

After running npm install react-bootstrap bootstrap --save, i get these:

added 19 packages, and audited 1574 packages in 9s

256 packages are looking for funding
  run `npm fund` for details

8 vulnerabilities (2 moderate, 6 high)

To address all issues (including breaking changes), run:
  npm audit fix --force

Run `npm audit` for details.

在进行<代码>npm 审计后—force, i 收到这些错误和许多<代码>nmp WARN deprecated:

npm WARN using --force Recommended protections disabled.
npm WARN audit Updating react-scripts to 3.0.1, which is a SemVer major change.


added 761 packages, removed 565 packages, changed 374 packages, and audited 1770 packages in 2m

115 packages are looking for funding
  run `npm fund` for details

# npm audit report

ansi-html  <0.0.8
Severity: high
Uncontrolled Resource Consumption in ansi-html - https://github.com/advisories/GHSA-whgm-jr23-g3j9
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/ansi-html
  webpack-dev-server  2.0.0-beta - 4.7.2
  Depends on vulnerable versions of ansi-html
  Depends on vulnerable versions of chokidar
  Depends on vulnerable versions of selfsigned
  Depends on vulnerable versions of sockjs
  Depends on vulnerable versions of yargs
  node_modules/webpack-dev-server
    react-scripts  >=0.1.0
    Depends on vulnerable versions of @svgr/webpack
    Depends on vulnerable versions of @typescript-eslint/eslint-plugin
    Depends on vulnerable versions of @typescript-eslint/parser
    Depends on vulnerable versions of css-loader
    Depends on vulnerable versions of eslint-config-react-app
    Depends on vulnerable versions of jest
    Depends on vulnerable versions of jest-environment-jsdom-fourteen
    Depends on vulnerable versions of optimize-css-assets-webpack-plugin
    Depends on vulnerable versions of postcss-flexbugs-fixes
    Depends on vulnerable versions of postcss-loader
    Depends on vulnerable versions of postcss-normalize
    Depends on vulnerable versions of postcss-preset-env
    Depends on vulnerable versions of postcss-safe-parser
    Depends on vulnerable versions of react-dev-utils
    Depends on vulnerable versions of semver
    Depends on vulnerable versions of terser-webpack-plugin
    Depends on vulnerable versions of webpack-dev-server
    node_modules/react-scripts

browserslist  4.0.0 - 4.16.4
Severity: moderate
Regular Expression Denial of Service in browserslist - https://github.com/advisories/GHSA-w8qv-6jwh-64r5
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/react-dev-utils/node_modules/browserslist
  react-dev-utils  0.4.0 - 12.0.0-next.60
  Depends on vulnerable versions of browserslist
  Depends on vulnerable versions of fork-ts-checker-webpack-plugin
  Depends on vulnerable versions of globby
  Depends on vulnerable versions of immer
  Depends on vulnerable versions of loader-utils
  Depends on vulnerable versions of recursive-readdir
  Depends on vulnerable versions of shell-quote
  node_modules/react-dev-utils

glob-parent  <5.1.2
Severity: high
glob-parent vulnerable to Regular Expression Denial of Service in enclosure regex - https://github.com/advisories/GHSA-ww39-953v-wcq6
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/glob-parent
  chokidar  1.0.0-rc1 - 2.1.8
  Depends on vulnerable versions of glob-parent
  node_modules/chokidar
    fork-ts-checker-webpack-plugin  <=3.1.0
    Depends on vulnerable versions of chokidar
    node_modules/fork-ts-checker-webpack-plugin
    watchpack-chokidar2  *
    Depends on vulnerable versions of chokidar
    node_modules/watchpack-chokidar2
      watchpack  1.7.2 - 1.7.5
      Depends on vulnerable versions of watchpack-chokidar2
      node_modules/watchpack
  fast-glob  <=2.2.7
  Depends on vulnerable versions of glob-parent
  node_modules/fast-glob
    globby  8.0.0 - 9.2.0
    Depends on vulnerable versions of fast-glob
    node_modules/globby
​
问题回答

The problem comes from create-react-app (namely react-scripts), instead of the command of npm install react-bootstrap bootstrap --save.

@Phil s comments has its Value, creact-app is a framework that helps You set up a web application in a severalpoints, but it deprecated around 3 years before (source: create-react-appthub Gi).

请通过<代码>npm 审计查询详细情况,其中应显示以下信息:

# npm audit report

nth-check  <2.0.1
Severity: high
Inefficient Regular Expression Complexity in nth-check - https://github.com/advisories/GHSA-rp65-9cf3-cjxr
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/svgo/node_modules/nth-check
  css-select  <=3.1.0
  Depends on vulnerable versions of nth-check
  node_modules/svgo/node_modules/css-select
    svgo  1.0.0 - 1.3.2
    Depends on vulnerable versions of css-select
    node_modules/svgo
      @svgr/plugin-svgo  <=5.5.0
      Depends on vulnerable versions of svgo
      node_modules/@svgr/plugin-svgo
        @svgr/webpack  4.0.0 - 5.5.0
        Depends on vulnerable versions of @svgr/plugin-svgo
        node_modules/@svgr/webpack
          react-scripts  >=2.1.4
          Depends on vulnerable versions of @svgr/webpack
          Depends on vulnerable versions of resolve-url-loader
          node_modules/react-scripts

postcss  <8.4.31
Severity: moderate
PostCSS line return parsing error - https://github.com/advisories/GHSA-7fh5-64p2-3v2j
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking change
node_modules/resolve-url-loader/node_modules/postcss
  resolve-url-loader  0.0.1-experiment-postcss || 3.0.0-alpha.1 - 4.0.0
  Depends on vulnerable versions of postcss
  node_modules/resolve-url-loader

8 vulnerabilities (2 moderate, 6 high)

To address all issues (including breaking changes), run:
  npm audit fix --force

首先,它建议你使用<条码>npm审计 固定,这意味着微量更新(例如<条码>1.0.x<条码/代码>至<条码>。 这个问题可以解决。

但在上述情况下,建议使用<条码>npm 审计准则-force,其中仅指主要最新情况(例如<条码>1.x.x至<条码>2.x.)。 可以解决这个问题(但通常会中断申请)。

通常vulnerabilities are not unforgivable——除非你从事需要重大安全关切的项目。

如果是这样,将贵项目转换为ViteNext.js,后者也是React,并能够支持Bootscc,则可以成为一种良好做法(如>。

时间:2023-12-29 02:05:57


上一篇:
下一篇:


相关问题
selected text in iframe

How to get a selected text inside a iframe. I my page i m having a iframe which is editable true. So how can i get the selected text in that iframe.

时间:2009-11-13 04:26:50 回答:3 展示:1
How to fire event handlers on the link using javascript

I would like to click a link in my page using javascript. I would like to Fire event handlers on the link without navigating. How can this be done? This has to work both in firefox and Internet ...

时间:2009-11-13 04:03:02 回答:2 展示:1
How to Add script codes before the </body> tag ASP.NET

Heres the problem, In Masterpage, the google analytics code were pasted before the end of body tag. In ASPX page, I need to generate a script (google addItem tracker) using codebehind ClientScript ...

时间:2009-11-13 03:31:36 回答:3 展示:1
Clipboard access using Javascript - sans Flash?

Is there a reliable way to access the client machine s clipboard using Javascript? I continue to run into permissions issues when attempting to do this. How does Google Docs do this? Do they use ...

时间:2009-11-09 14:57:38 回答:8 展示:1
javascript debugging question

I have a large javascript which I didn t write but I need to use it and I m slowely going trough it trying to figure out what does it do and how, I m using alert to print out what it does but now I ...

时间:2009-11-09 14:29:27 回答:2 展示:1
Parsing date like twitter

I ve made a little forum and I want parse the date on newest posts like twitter, you know "posted 40 minutes ago ","posted 1 hour ago"... What s the best way ? Thanx.

时间:2009-11-09 14:21:27 回答:2 展示:1
热门标签

友情链接

Allggapp Alljchome-教程家园 mvfinale.com-影视剧情大结局大全