fascinating-indigo
fascinating-indigo3mo ago

3 high severity vulnerabilities

I tried to implement the Refine todolist project from https://github.com/TheEmi/TodoRefine. First to install nodemodules, i used command :"npm install", To address issues that do not require attention, run: npm audit fix but there are still 3 3 high severity vulnerabilities. under this situation, I implemented the project and i can see the note in CLI "Refine Devtools is running at port 5001 VITE v4.5.5 ready in 11603 ms ➜ Local: http://localhost:5173/ ➜ Network: use --host to expose" but I can't still see on the browser.
2 Replies
kapa.ai
kapa.ai3mo ago
Hi @santa519. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base. :wave: ---------------------- It looks like you're encountering two separate issues: high severity vulnerabilities in your dependencies and an inability to see your application in the browser. Addressing High Severity Vulnerabilities From the knowledge sources, it appears that there have been issues with vulnerabilities in the @refinedev/cli dependencies. Specifically, the marked package has been flagged for vulnerabilities. Here is a workaround that was suggested: 
"overrides": {
  "ink-markdown": {
    "marked": "^4.0.10"
  }
}
"overrides": {
  "ink-markdown": {
    "marked": "^4.0.10"
  }
}
You can add this to your package.json to override the vulnerable version of marked. This should help mitigate the vulnerabilities. Application Not Showing in Browser Regarding the issue of not being able to see your application in the browser, it seems like the application is running, but you might be facing a port conflict or a network issue. Here are a few steps to troubleshoot: 1. Check for Port Conflicts: Ensure that no other application is using port 5173 or 5001. You can use the following command to check for processes using these ports: 
    lsof -i :5173
    lsof -i :5001
    
    lsof -i :5173
    lsof -i :5001
If you find any processes, you can kill them using: 
    kill -9 <PID>
    
    kill -9 <PID>
2. Firewall or Network Issues: Ensure that your firewall or network settings are not blocking access to localhost:5173. Sometimes, security settings can prevent access to local ports. 3. Devtools Configuration: If you are running multiple refine projects or have custom configurations, ensure that the devtools are not causing conflicts. You can disable the automatic start of the devtools server by passing --devtools=false flag to the refine dev command: 
    refine dev --devtools=false
    
    refine dev --devtools=false
4. Environment Variables: Make sure that the REFINE_DEVTOOLS_PORT environment variable is set correctly if you are using a custom port. Note that running devtools on ports other than 5001 is only available in the Enterprise Edition. For more detailed information, you can refer to the Refine Devtools Documentation (https://refine.dev/docs/enterprise-edition/devtools/). If these steps do not resolve your issue, please provide more details or logs from your terminal to help diagnose the problem further. References - Vulnerability Issue (https://github.com/refinedev/refine/issues/4037) - Port Conflict Issue (https://github.com/refinedev/refine/issues/5294) - Devtools Documentation (https://refine.dev/docs/enterprise-edition/devtools/) If you need further assistance, feel free to ask! ---------------------- Note: you can ask me a follow up question by @ mentioning me again :speech_balloon: ----------------------
kapa.ai
kapa.ai3mo ago
<@1268578011243085854> kapa.ai is still learning and improving, please let us know how it did by reacting below