Dependency Vulnerabilities and Update Procedures for Canvas

1 reply · opened Nov 9, 2023

GguyyavetzeNov 9, 2023

Dear Canvas Support Team,

I have recently purchased and started working with your Canvas HTML5 Template and have encountered a few challenges that I hope you can assist me with. After setting up the template in my local development environment, I ran npm install and was alerted to several high-severity vulnerabilities by npm audit.

Understanding that these vulnerabilities can pose risks, especially in a production environment, I attempted to resolve them using npm audit fix. However, I've been advised that some of the fixes involve breaking changes which could potentially disrupt the existing functionalities of the template.
I am seeking guidance on the best course of action to handle these updates.

Your assistance is greatly appreciated, Thank you for your support and looking forward to your prompt response.

SSemicolon WebSTAFFNov 10, 2023

Hello,

Thanks for the Purchase!

We assure you that NodeJS warnings do not affect the Template Functionality in any way as they are not related to them in the Production Environments. We use NodeJS/GulpJs primarily for SCSS Compilations, RTL Generation and CSS/JS/Images Minifications following Bootstrap Standards. So you can confidently use NodeJS without any issues. No issues have been reported yet due to this, but if you face any issues, we will be more than happy to help.

Hope this Helps!

Let us know if we can help you with anything else or if you find any further issues.

Have the same question, or something new?

Sign in to the Canvas dashboard to reply or open your own topic. Canvas owners get direct help from the SemiColonWeb team.

Reply on the dashboard