weatherscan icons don't work. Already have api Key installed, 8 vulnerabilities #76
Description
My icons aren't showing up and i think it might have something to do with the 8 dependencies. WARNING: my username has been censored to avoid doxxing myself
USERNAME HAS BEEN REMOVED TO AVOID DOXXING MYSELF
Here’s the traceback my 2020 Mac M1 With MacOS 15.1 Sequoia Beta With Apple Intelligence got when running this code.
(base) (USERNAME REDACTED)@(USERNAME REDACTED)-MacBook-Pro Weatherscan %
npm install --production
npm warn config production Use --omit=dev instead.
npm warn deprecated [email protected]: See https://github.com/lydell/source-map-url#deprecated
npm warn deprecated [email protected]: Please see https://github.com/lydell/urix#deprecated
npm warn deprecated [email protected]: The package has been renamed to open
npm warn deprecated [email protected]: https://github.com/lydell/resolve-url#deprecated
npm warn deprecated [email protected]: See https://github.com/lydell/source-map-resolve#deprecated
npm warn deprecated [email protected]: fsevents 1 will break on node v14+ and could be using insecure binaries. Upgrade to fsevents 2.
npm warn deprecated [email protected]: Chokidar 2 does not receive security updates since 2019. Upgrade to chokidar 3 with 15x fewer dependencies
npm warn deprecated [email protected]: Please upgrade to version 7 or higher. Older versions may use Math.random() in certain circumstances, which is known to be problematic. See https://v8.dev/blog/math-random for details.
added 342 packages, and audited 343 packages in 12s
35 packages are looking for funding
run npm fund for details
14 vulnerabilities (4 moderate, 9 high, 1 critical)
To address issues that do not require attention, run:
npm audit fix
Some issues need review, and may require choosing
a different dependency.
Run npm audit for details.
(base)(USERNAME REDACTED)@(USERNAME REDACTED)-MacBook-Pro Weatherscan %
npm audit fix
added 227 packages, removed 2 packages, changed 10 packages, and audited 568 packages in 5s
41 packages are looking for funding
run npm fund for details
npm audit report
braces <3.0.3
Severity: high
Uncontrolled resource consumption in braces - GHSA-grv7-fg5c-xmjg
fix available via npm audit fix --force
Will install [email protected], which is a breaking change
node_modules/braces
chokidar 1.3.0 - 2.1.8
Depends on vulnerable versions of anymatch
Depends on vulnerable versions of braces
Depends on vulnerable versions of readdirp
node_modules/chokidar
glob-watcher 5.0.0 - 5.0.5
Depends on vulnerable versions of anymatch
Depends on vulnerable versions of chokidar
node_modules/glob-watcher
gulp 4.0.0 - 4.0.2
Depends on vulnerable versions of glob-watcher
Depends on vulnerable versions of gulp-cli
node_modules/gulp
live-server >=1.2.1
Depends on vulnerable versions of chokidar
node_modules/live-server
micromatch <=4.0.7
Depends on vulnerable versions of braces
node_modules/micromatch
anymatch 1.2.0 - 2.0.0
Depends on vulnerable versions of micromatch
node_modules/anymatch
findup-sync 0.4.0 - 3.0.0
Depends on vulnerable versions of micromatch
node_modules/findup-sync
node_modules/matchdep/node_modules/findup-sync
liftoff 2.2.3 - 3.1.0
Depends on vulnerable versions of findup-sync
node_modules/liftoff
gulp-cli 1.3.0 - 2.3.0
Depends on vulnerable versions of liftoff
Depends on vulnerable versions of matchdep
node_modules/gulp-cli
matchdep >=1.0.1
Depends on vulnerable versions of findup-sync
Depends on vulnerable versions of micromatch
node_modules/matchdep
readdirp 2.2.0 - 2.2.1
Depends on vulnerable versions of micromatch
node_modules/readdirp
http-proxy <1.18.1
Severity: high
Denial of Service in http-proxy - GHSA-6x33-pw7p-hmpq
No fix available
node_modules/http-proxy
cors-anywhere *
Depends on vulnerable versions of http-proxy
node_modules/cors-anywhere
postcss <8.4.31
Severity: moderate
PostCSS line return parsing error - GHSA-7fh5-64p2-3v2j
fix available via npm audit fix --force
Will install [email protected], which is a breaking change
node_modules/postcss
autoprefixer 1.0.20131222 - 9.8.8
Depends on vulnerable versions of postcss
node_modules/autoprefixer
gulp-autoprefixer 0.0.3 - 0.0.10 || 2.2.0 - 7.0.1
Depends on vulnerable versions of autoprefixer
Depends on vulnerable versions of postcss
node_modules/gulp-autoprefixer
17 vulnerabilities (9 moderate, 8 high)
To address issues that do not require attention, run:
npm audit fix
To address all issues possible (including breaking changes), run:
npm audit fix --force
Some issues need review, and may require choosing
a different dependency.
(base)(USERNAME REDACTED)@(USERNAME REDACTED)-MacBook-Pro Weatherscan %
npm start
start
npm-run-all --parallel cors dev-server
dev-server
live-server ./webroot
cors
node ./webroot/js/cors.js
Running CORS Anywhere on 0.0.0.0:8081
Serving "./webroot" at http://127.0.0.1:8080
Ready for changes
GET /js/secrets.js 404 25.912 ms - 152
GET /images/icons/24.png 404 3.732 ms - 158
GET /images/icons/30.png 404 2.195 ms - 158
GET /images/icons/28.png 404 1.920 ms - 158
GET /images/icons/24.png 404 12.682 ms - 158
GET /images/icons/28.png 404 18.803 ms - 158
(node:87815) [DEP0060] DeprecationWarning: The util._extend API is deprecated. Please use Object.assign() instead.
(Use node --trace-deprecation ... to show where the warning was created)