关于审计报告

About audit reports

审核报告包含有关项目依赖中的安全漏洞的信息表,以帮助你修复漏洞或进一步排除故障。

Audit reports contain tables of information about security vulnerabilities in your project's dependencies to help you fix the vulnerability or troubleshoot further.

Screenshot showing command-line audit report results

漏洞表字段

Vulnerability table fields

严重性

Severity

漏洞的严重性,由漏洞在其最常见用例中的影响和可利用性决定。

The severity of the vulnerability, determined by the impact and exploitability of the vulnerability in its most common use case.

严重性建议操作
严重立即解决
尽快解决
时间允许时解决
由你自行决定解决

描述

Description

漏洞描述。例如,"拒绝服务"。

The description of the vulnerability. For example, "Denial of service".

Package

包含漏洞的包的名称。

The name of the package that contains the vulnerability.

已修补

Patched in

描述哪些版本包含漏洞修复程序的语义版本范围。

The semantic version range that describes which versions contain a fix for the vulnerability.

依赖

Dependency of

存在漏洞的包所依赖的模块。

The module that the package with the vulnerability depends on.

路径

Path

包含漏洞的代码的路径。

The path to the code that contains the vulnerability.

更多信息

More info

安全报告的链接。

A link to the security report.

npm 中文网 - 粤ICP备13048890号