php - 在 Laravel 中安装 Dropone 时严重性较低

问题描述

每当我想在 Laravel 中安装 Dropzone 时，我都会在终端中添加以下行

npm i dropzone --save-dev

但随后显示以下错误并且 Dropzone 未完全安装

+ dropzone@5.7.2
updated 1 package and audited 1091 packages in 42.828s

37 packages are looking for funding
  run `npm fund` for details

found 1 low severity vulnerability
  run `npm audit fix` to fix them, or `npm audit` for details

然后，当我在终端中键入以下内容以检查漏洞是什么时

npm audit fix

出现以下

up to date in 9.494s

37 packages are looking for funding
  run `npm fund` for details

fixed 0 of 1 vulnerability in 1097 scanned packages
  1 vulnerability required manual review and could not be updated

所以我输入以下内容

npm audit

然后出现以下

                       === npm audit security report ===


                             Manual Review
         Some vulnerabilities require your attention to resolve

      Visit https://go.npm.me/audit-guide for additional guidance


  Low             Prototype Pollution

  Package         yargs-parser

  Patched in      >=13.1.2 <14.0.0 || >=15.0.1 <16.0.0 || >=18.1.2

  Dependency of   laravel-mix [dev]

  Path            laravel-mix > yargs > yargs-parser

  More info       https://npmjs.com/advisories/1500

found 1 low severity vulnerability in 1097 scanned packages
  1 vulnerability requires manual review. See the full report for details.

那么任何人都可以帮我修复这个漏洞吗？

标签： phplaraveldropzone