Liongard Ideas Portal

Submit and upvote ideas to make Liongard better. You get 20 votes so vote wisely. πŸ™‚


The Product Team is constantly reading your ideas and while we can’t promise that all ideas will become a reality, we value your feedback and promise to always have our Partners in mind when building and improving Liongard.

Check out our FAQs to learn more.

See what we've shipped by clicking here!

Error: Cannot find module 'request'

Hi Team,


I'm getting an "Error: Cannot find module 'request'" error on Linux systems. Experienced it on Debian 8.11 and Ubuntu 18 LTS. Please find below more information. To fix I had to manually install the 'request' module into the project at /opt/liongard/scripts.


After installing the roar linux agent version 1.9.4 on Ubuntu 18.04 LTS I discovered that the agent errors with the following error in the logs:


anks######START QUOTE######

Error: Cannot find module 'request'

Require stack:

- /opt/liongard/build/index.js

at Function.Module._resolveFilename (node:internal/modules/cjs/loader:925:15)

at Module.Hook._require.Module.require (/usr/local/lib/node_modules/pm2/node_modules/require-in-the-middle/index.js:61:29)

at require (node:internal/modules/cjs/helpers:92:18)

at Object.<anonymous> (/opt/liongard/lib/index.js:10:15)

at Module._compile (node:internal/modules/cjs/loader:1108:14)

at Object.Module._extensions..js (node:internal/modules/cjs/loader:1137:10)

at Module.load (node:internal/modules/cjs/loader:973:32)

at Function.Module._load (node:internal/modules/cjs/loader:813:14)

at Object.<anonymous> (/usr/local/lib/node_modules/pm2/lib/ProcessContainerFork.js:33:23)

at Module._compile (node:internal/modules/cjs/loader:1108:14)

at Object.Module._extensions..js (node:internal/modules/cjs/loader:1137:10)

at Module.load (node:internal/modules/cjs/loader:973:32)

at Function.Module._load (node:internal/modules/cjs/loader:813:14)

at Function.executeUserEntryPoint [as runMain] (node:internal/modules/run_main:76:12)

at node:internal/main/run_main_module:17:47 {

code: 'MODULE_NOT_FOUND',

requireStack: [ '/opt/liongard/build/index.js' ]

}

######END QUOTE######


Checking on the roar-agent status shows errored:


######START QUOTE######

root@zentyal:/opt/liongard/scripts# pm2 show roar-agent

Describing process with id 0 - name roar-agent

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€

β”‚ status β”‚ errored β”‚

β”‚ name β”‚ roar-agent β”‚

β”‚ namespace β”‚ default β”‚

β”‚ version β”‚ 1.9.4 β”‚

β”‚ restarts β”‚ 30 β”‚

β”‚ uptime β”‚ 0 β”‚

β”‚ script path β”‚ /opt/liongard/build/index.js β”‚

β”‚ script args β”‚ N/A β”‚

β”‚ error log path β”‚ /home/admin/.pm2/logs/roar-agent-error.log β”‚

β”‚ out log path β”‚ /home/admin/.pm2/logs/roar-agent-out.log β”‚

β”‚ pid path β”‚ /home/admin/.pm2/pids/roar-agent-0.pid β”‚

β”‚ interpreter β”‚ node β”‚

β”‚ interpreter args β”‚ N/A β”‚

β”‚ script id β”‚ 0 β”‚

β”‚ exec cwd β”‚ /usr/local β”‚

β”‚ exec mode β”‚ fork_mode β”‚

β”‚ node.js version β”‚ 15.5.0 β”‚

β”‚ node env β”‚ N/A β”‚

β”‚ watch & reload β”‚ ✘ β”‚

β”‚ unstable restarts β”‚ 0 β”‚

β”‚ created at β”‚ N/A β”‚

└───────────────────────────────────────────────────────────────────

Divergent env variables from local env

β”Œβ”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€β”€

β”‚ SUDO_GID β”‚ 0 β”‚

β”‚ USERNAME β”‚ β”‚

β”‚ SUDO_COMMAND β”‚ ./setup-roar-agent --url ca1.app.liongard.com --name admin --description Domain Controller β”‚

β”‚ USER β”‚ β”‚ admin

β”‚ PWD β”‚ /usr/local β”‚

β”‚ SUDO_USER β”‚ root β”‚

β”‚ SUDO_UID β”‚ 0 β”‚

β”‚ MAIL β”‚ /var/mail/admin β”‚

β”‚ LOGNAME β”‚ admin β”‚

└───────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────────

######END QUOTE######


When manually starting the roar-agent, the agent shows online for a couple seconds and then errors again with the same error in the logs.


What I've done to fix the error is to install the 'request' module into the 'service.js' file that's in '/opt/liongard/scripts':


######START QUOTE######

root@zentyal:/opt/liongard/scripts# npm install request


added 840 packages, and audited 1514 packages in 19s


53 vulnerabilities (28 low, 7 moderate, 15 high, 3 critical)


To address issues that do not require attention, run:

npm audit fix


To address all issues (including breaking changes), run:

npm audit fix --force


Run `npm audit` for details.

######END QUOTE######


Manually starting the roar-agent does not result in an error anymore.


I ran 'npm audit fix' but could only fix some of the vulnerabilities. Please see below for a log of the 'npm audit fix' command.



######START QUOTE######

root@zentyal:/opt/liongard/scripts# npm audit fix

npm WARN audit fix brace-expansion@1.1.6 node_modules/npm/node_modules/fstream-npm/node_modules/fstream-ignore/node_modules/minimatch/node_modules/brace-expansion

npm WARN audit fix brace-expansion@1.1.6 is a bundled dependency of

npm WARN audit fix brace-expansion@1.1.6 npm@4.6.1 at node_modules/npm

npm WARN audit fix brace-expansion@1.1.6 It cannot be fixed automatically.

npm WARN audit fix brace-expansion@1.1.6 Check for updates to the npm package.

npm WARN audit fix brace-expansion@1.1.6 node_modules/npm/node_modules/glob/node_modules/minimatch/node_modules/brace-expansion

npm WARN audit fix brace-expansion@1.1.6 is a bundled dependency of

npm WARN audit fix brace-expansion@1.1.6 npm@4.6.1 at node_modules/npm

npm WARN audit fix brace-expansion@1.1.6 It cannot be fixed automatically.

npm WARN audit fix brace-expansion@1.1.6 Check for updates to the npm package.

npm WARN audit fix brace-expansion@1.1.6 node_modules/npm/node_modules/node-gyp/node_modules/minimatch/node_modules/brace-expansion

npm WARN audit fix brace-expansion@1.1.6 is a bundled dependency of

npm WARN audit fix brace-expansion@1.1.6 npm@4.6.1 at node_modules/npm

npm WARN audit fix brace-expansion@1.1.6 It cannot be fixed automatically.

npm WARN audit fix brace-expansion@1.1.6 Check for updates to the npm package.

npm WARN audit fix braces@1.8.5 node_modules/nyc/node_modules/braces

npm WARN audit fix braces@1.8.5 is a bundled dependency of

npm WARN audit fix braces@1.8.5 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix braces@1.8.5 It cannot be fixed automatically.

npm WARN audit fix braces@1.8.5 Check for updates to the nyc package.

npm WARN audit fix cryptiles@2.0.5 node_modules/npm/node_modules/request/node_modules/hawk/node_modules/cryptiles

npm WARN audit fix cryptiles@2.0.5 is a bundled dependency of

npm WARN audit fix cryptiles@2.0.5 npm@4.6.1 at node_modules/npm

npm WARN audit fix cryptiles@2.0.5 It cannot be fixed automatically.

npm WARN audit fix cryptiles@2.0.5 Check for updates to the npm package.

npm WARN audit fix debug@2.6.6 node_modules/nyc/node_modules/debug

npm WARN audit fix debug@2.6.6 is a bundled dependency of

npm WARN audit fix debug@2.6.6 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix debug@2.6.6 It cannot be fixed automatically.

npm WARN audit fix debug@2.6.6 Check for updates to the nyc package.

npm WARN audit fix deep-extend@0.4.1 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/node_modules/rc/node_modules/deep-extend

npm WARN audit fix deep-extend@0.4.1 is a bundled dependency of

npm WARN audit fix deep-extend@0.4.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix deep-extend@0.4.1 It cannot be fixed automatically.

npm WARN audit fix deep-extend@0.4.1 Check for updates to the npm package.

npm WARN audit fix deep-extend@0.4.1 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-url/node_modules/rc/node_modules/deep-extend

npm WARN audit fix deep-extend@0.4.1 is a bundled dependency of

npm WARN audit fix deep-extend@0.4.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix deep-extend@0.4.1 It cannot be fixed automatically.

npm WARN audit fix deep-extend@0.4.1 Check for updates to the npm package.

npm WARN audit fix dot-prop@4.1.1 node_modules/npm/node_modules/update-notifier/node_modules/configstore/node_modules/dot-prop

npm WARN audit fix dot-prop@4.1.1 is a bundled dependency of

npm WARN audit fix dot-prop@4.1.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix dot-prop@4.1.1 It cannot be fixed automatically.

npm WARN audit fix dot-prop@4.1.1 Check for updates to the npm package.

npm WARN audit fix extend@3.0.0 node_modules/npm/node_modules/request/node_modules/extend

npm WARN audit fix extend@3.0.0 is a bundled dependency of

npm WARN audit fix extend@3.0.0 npm@4.6.1 at node_modules/npm

npm WARN audit fix extend@3.0.0 It cannot be fixed automatically.

npm WARN audit fix extend@3.0.0 Check for updates to the npm package.

npm WARN audit fix fstream@1.0.11 node_modules/npm/node_modules/fstream

npm WARN audit fix fstream@1.0.11 is a bundled dependency of

npm WARN audit fix fstream@1.0.11 npm@4.6.1 at node_modules/npm

npm WARN audit fix fstream@1.0.11 It cannot be fixed automatically.

npm WARN audit fix fstream@1.0.11 Check for updates to the npm package.

npm WARN audit fix handlebars@4.0.8 node_modules/nyc/node_modules/handlebars

npm WARN audit fix handlebars@4.0.8 is a bundled dependency of

npm WARN audit fix handlebars@4.0.8 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix handlebars@4.0.8 It cannot be fixed automatically.

npm WARN audit fix handlebars@4.0.8 Check for updates to the nyc package.

npm WARN audit fix hoek@2.16.3 node_modules/npm/node_modules/request/node_modules/hawk/node_modules/hoek

npm WARN audit fix hoek@2.16.3 is a bundled dependency of

npm WARN audit fix hoek@2.16.3 npm@4.6.1 at node_modules/npm

npm WARN audit fix hoek@2.16.3 It cannot be fixed automatically.

npm WARN audit fix hoek@2.16.3 Check for updates to the npm package.

npm WARN audit fix ini@1.3.5 node_modules/fsevents/node_modules/ini

npm WARN audit fix ini@1.3.5 is a bundled dependency of

npm WARN audit fix ini@1.3.5 fsevents@1.2.4 at node_modules/fsevents

npm WARN audit fix ini@1.3.5 It cannot be fixed automatically.

npm WARN audit fix ini@1.3.5 Check for updates to the fsevents package.

npm WARN audit fix ini@1.3.4 node_modules/npm/node_modules/ini

npm WARN audit fix ini@1.3.4 is a bundled dependency of

npm WARN audit fix ini@1.3.4 npm@4.6.1 at node_modules/npm

npm WARN audit fix ini@1.3.4 It cannot be fixed automatically.

npm WARN audit fix ini@1.3.4 Check for updates to the npm package.

npm WARN audit fix lodash@4.17.4 node_modules/nyc/node_modules/lodash

npm WARN audit fix lodash@4.17.4 is a bundled dependency of

npm WARN audit fix lodash@4.17.4 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix lodash@4.17.4 It cannot be fixed automatically.

npm WARN audit fix lodash@4.17.4 Check for updates to the nyc package.

npm WARN audit fix minimist@0.0.8 node_modules/fsevents/node_modules/minimist

npm WARN audit fix minimist@0.0.8 is a bundled dependency of

npm WARN audit fix minimist@0.0.8 fsevents@1.2.4 at node_modules/fsevents

npm WARN audit fix minimist@0.0.8 It cannot be fixed automatically.

npm WARN audit fix minimist@0.0.8 Check for updates to the fsevents package.

npm WARN audit fix minimist@1.2.0 node_modules/fsevents/node_modules/rc/node_modules/minimist

npm WARN audit fix minimist@1.2.0 is a bundled dependency of

npm WARN audit fix minimist@1.2.0 fsevents@1.2.4 at node_modules/fsevents

npm WARN audit fix minimist@1.2.0 It cannot be fixed automatically.

npm WARN audit fix minimist@1.2.0 Check for updates to the fsevents package.

npm WARN audit fix minimist@0.0.8 node_modules/npm/node_modules/mkdirp/node_modules/minimist

npm WARN audit fix minimist@0.0.8 is a bundled dependency of

npm WARN audit fix minimist@0.0.8 npm@4.6.1 at node_modules/npm

npm WARN audit fix minimist@0.0.8 It cannot be fixed automatically.

npm WARN audit fix minimist@0.0.8 Check for updates to the npm package.

npm WARN audit fix minimist@1.2.0 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/node_modules/rc/node_modules/minimist

npm WARN audit fix minimist@1.2.0 is a bundled dependency of

npm WARN audit fix minimist@1.2.0 npm@4.6.1 at node_modules/npm

npm WARN audit fix minimist@1.2.0 It cannot be fixed automatically.

npm WARN audit fix minimist@1.2.0 Check for updates to the npm package.

npm WARN audit fix minimist@1.2.0 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-url/node_modules/rc/node_modules/minimist

npm WARN audit fix minimist@1.2.0 is a bundled dependency of

npm WARN audit fix minimist@1.2.0 npm@4.6.1 at node_modules/npm

npm WARN audit fix minimist@1.2.0 It cannot be fixed automatically.

npm WARN audit fix minimist@1.2.0 Check for updates to the npm package.

npm WARN audit fix minimist@0.0.8 node_modules/nyc/node_modules/minimist

npm WARN audit fix minimist@0.0.8 is a bundled dependency of

npm WARN audit fix minimist@0.0.8 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix minimist@0.0.8 It cannot be fixed automatically.

npm WARN audit fix minimist@0.0.8 Check for updates to the nyc package.

npm WARN audit fix npm-user-validate@0.1.5 node_modules/npm/node_modules/npm-user-validate

npm WARN audit fix npm-user-validate@0.1.5 is a bundled dependency of

npm WARN audit fix npm-user-validate@0.1.5 npm@4.6.1 at node_modules/npm

npm WARN audit fix npm-user-validate@0.1.5 It cannot be fixed automatically.

npm WARN audit fix npm-user-validate@0.1.5 Check for updates to the npm package.

npm WARN audit fix randomatic@1.1.6 node_modules/nyc/node_modules/randomatic

npm WARN audit fix randomatic@1.1.6 is a bundled dependency of

npm WARN audit fix randomatic@1.1.6 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix randomatic@1.1.6 It cannot be fixed automatically.

npm WARN audit fix randomatic@1.1.6 Check for updates to the nyc package.

npm WARN audit fix sshpk@1.11.0 node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk

npm WARN audit fix sshpk@1.11.0 is a bundled dependency of

npm WARN audit fix sshpk@1.11.0 npm@4.6.1 at node_modules/npm

npm WARN audit fix sshpk@1.11.0 It cannot be fixed automatically.

npm WARN audit fix sshpk@1.11.0 Check for updates to the npm package.

npm WARN audit fix stringstream@0.0.5 node_modules/npm/node_modules/request/node_modules/stringstream

npm WARN audit fix stringstream@0.0.5 is a bundled dependency of

npm WARN audit fix stringstream@0.0.5 npm@4.6.1 at node_modules/npm

npm WARN audit fix stringstream@0.0.5 It cannot be fixed automatically.

npm WARN audit fix stringstream@0.0.5 Check for updates to the npm package.

npm WARN audit fix tar@4.4.1 node_modules/fsevents/node_modules/tar

npm WARN audit fix tar@4.4.1 is a bundled dependency of

npm WARN audit fix tar@4.4.1 fsevents@1.2.4 at node_modules/fsevents

npm WARN audit fix tar@4.4.1 It cannot be fixed automatically.

npm WARN audit fix tar@4.4.1 Check for updates to the fsevents package.

npm WARN audit fix tar@2.2.1 node_modules/npm/node_modules/tar

npm WARN audit fix tar@2.2.1 is a bundled dependency of

npm WARN audit fix tar@2.2.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix tar@2.2.1 It cannot be fixed automatically.

npm WARN audit fix tar@2.2.1 Check for updates to the npm package.

npm WARN audit fix tough-cookie@2.3.2 node_modules/npm/node_modules/request/node_modules/tough-cookie

npm WARN audit fix tough-cookie@2.3.2 is a bundled dependency of

npm WARN audit fix tough-cookie@2.3.2 npm@4.6.1 at node_modules/npm

npm WARN audit fix tough-cookie@2.3.2 It cannot be fixed automatically.

npm WARN audit fix tough-cookie@2.3.2 Check for updates to the npm package.

npm WARN audit fix yargs-parser@5.0.0 node_modules/nyc/node_modules/yargs-parser

npm WARN audit fix yargs-parser@5.0.0 is a bundled dependency of

npm WARN audit fix yargs-parser@5.0.0 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix yargs-parser@5.0.0 It cannot be fixed automatically.

npm WARN audit fix yargs-parser@5.0.0 Check for updates to the nyc package.

npm WARN audit fix micromatch@2.3.11 node_modules/nyc/node_modules/micromatch

npm WARN audit fix micromatch@2.3.11 is a bundled dependency of

npm WARN audit fix micromatch@2.3.11 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix micromatch@2.3.11 It cannot be fixed automatically.

npm WARN audit fix micromatch@2.3.11 Check for updates to the nyc package.

npm WARN audit fix hawk@3.1.3 node_modules/npm/node_modules/request/node_modules/hawk

npm WARN audit fix hawk@3.1.3 is a bundled dependency of

npm WARN audit fix hawk@3.1.3 npm@4.6.1 at node_modules/npm

npm WARN audit fix hawk@3.1.3 It cannot be fixed automatically.

npm WARN audit fix hawk@3.1.3 Check for updates to the npm package.

npm WARN audit fix rc@1.1.7 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/node_modules/rc

npm WARN audit fix rc@1.1.7 is a bundled dependency of

npm WARN audit fix rc@1.1.7 npm@4.6.1 at node_modules/npm

npm WARN audit fix rc@1.1.7 It cannot be fixed automatically.

npm WARN audit fix rc@1.1.7 Check for updates to the npm package.

npm WARN audit fix rc@1.1.7 node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-url/node_modules/rc

npm WARN audit fix rc@1.1.7 is a bundled dependency of

npm WARN audit fix rc@1.1.7 npm@4.6.1 at node_modules/npm

npm WARN audit fix rc@1.1.7 It cannot be fixed automatically.

npm WARN audit fix rc@1.1.7 Check for updates to the npm package.

npm WARN audit fix boom@2.10.1 node_modules/npm/node_modules/request/node_modules/hawk/node_modules/boom

npm WARN audit fix boom@2.10.1 is a bundled dependency of

npm WARN audit fix boom@2.10.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix boom@2.10.1 It cannot be fixed automatically.

npm WARN audit fix boom@2.10.1 Check for updates to the npm package.

npm WARN audit fix sntp@1.0.9 node_modules/npm/node_modules/request/node_modules/hawk/node_modules/sntp

npm WARN audit fix sntp@1.0.9 is a bundled dependency of

npm WARN audit fix sntp@1.0.9 npm@4.6.1 at node_modules/npm

npm WARN audit fix sntp@1.0.9 It cannot be fixed automatically.

npm WARN audit fix sntp@1.0.9 Check for updates to the npm package.

npm WARN audit fix mkdirp@0.5.1 node_modules/fsevents/node_modules/mkdirp

npm WARN audit fix mkdirp@0.5.1 is a bundled dependency of

npm WARN audit fix mkdirp@0.5.1 fsevents@1.2.4 at node_modules/fsevents

npm WARN audit fix mkdirp@0.5.1 It cannot be fixed automatically.

npm WARN audit fix mkdirp@0.5.1 Check for updates to the fsevents package.

npm WARN audit fix mkdirp@0.5.1 node_modules/npm/node_modules/mkdirp

npm WARN audit fix mkdirp@0.5.1 is a bundled dependency of

npm WARN audit fix mkdirp@0.5.1 npm@4.6.1 at node_modules/npm

npm WARN audit fix mkdirp@0.5.1 It cannot be fixed automatically.

npm WARN audit fix mkdirp@0.5.1 Check for updates to the npm package.

npm WARN audit fix mkdirp@0.5.1 node_modules/nyc/node_modules/mkdirp

npm WARN audit fix mkdirp@0.5.1 is a bundled dependency of

npm WARN audit fix mkdirp@0.5.1 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix mkdirp@0.5.1 It cannot be fixed automatically.

npm WARN audit fix mkdirp@0.5.1 Check for updates to the nyc package.

npm WARN audit fix optimist@0.6.1 node_modules/nyc/node_modules/optimist

npm WARN audit fix optimist@0.6.1 is a bundled dependency of

npm WARN audit fix optimist@0.6.1 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix optimist@0.6.1 It cannot be fixed automatically.

npm WARN audit fix optimist@0.6.1 Check for updates to the nyc package.

npm WARN audit fix fill-range@2.2.3 node_modules/nyc/node_modules/fill-range

npm WARN audit fix fill-range@2.2.3 is a bundled dependency of

npm WARN audit fix fill-range@2.2.3 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix fill-range@2.2.3 It cannot be fixed automatically.

npm WARN audit fix fill-range@2.2.3 Check for updates to the nyc package.

npm WARN audit fix yargs@7.1.0 node_modules/nyc/node_modules/yargs

npm WARN audit fix yargs@7.1.0 is a bundled dependency of

npm WARN audit fix yargs@7.1.0 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix yargs@7.1.0 It cannot be fixed automatically.

npm WARN audit fix yargs@7.1.0 Check for updates to the nyc package.

npm WARN audit fix test-exclude@4.1.0 node_modules/nyc/node_modules/test-exclude

npm WARN audit fix test-exclude@4.1.0 is a bundled dependency of

npm WARN audit fix test-exclude@4.1.0 nyc@10.3.2 at node_modules/nyc

npm WARN audit fix test-exclude@4.1.0 It cannot be fixed automatically.

npm WARN audit fix test-exclude@4.1.0 Check for updates to the nyc package.

npm WARN audit fix request@2.81.0 node_modules/npm/node_modules/request

npm WARN audit fix request@2.81.0 is a bundled dependency of

npm WARN audit fix request@2.81.0 npm@4.6.1 at node_modules/npm

npm WARN audit fix request@2.81.0 It cannot be fixed automatically.

npm WARN audit fix request@2.81.0 Check for updates to the npm package.


added 6 packages, removed 213 packages, changed 112 packages, and audited 1653 packages in 12s


2 packages are looking for funding

run `npm fund` for details


# npm audit report


braces <2.3.1

Regular Expression Denial of Service - https://npmjs.com/advisories/786

fix available via `npm audit fix --force`

Will install nyc@15.1.0, which is a breaking change

node_modules/braces

node_modules/nyc/node_modules/braces

micromatch 0.2.0 - 2.3.11

Depends on vulnerable versions of braces

node_modules/micromatch

node_modules/nyc/node_modules/micromatch

anymatch 1.2.0 - 1.3.2

Depends on vulnerable versions of micromatch

node_modules/anymatch

chokidar 1.3.0 - 1.7.0

Depends on vulnerable versions of anymatch

node_modules/chokidar

babel-cli >=6.22.0

Depends on vulnerable versions of chokidar

node_modules/babel-cli

glob-stream 5.3.0 - 5.3.5

Depends on vulnerable versions of micromatch

node_modules/glob-stream

vinyl-fs 2.4.2 - 2.4.4

Depends on vulnerable versions of glob-stream

node_modules/vinyl-fs

nyc 5.0.0 - 13.3.0

Depends on vulnerable versions of micromatch

Depends on vulnerable versions of mkdirp

Depends on vulnerable versions of test-exclude

Depends on vulnerable versions of yargs

Depends on vulnerable versions of yargs-parser

node_modules/nyc

test-exclude <=4.2.3

Depends on vulnerable versions of micromatch

node_modules/nyc/node_modules/test-exclude

node_modules/test-exclude

babel-plugin-istanbul <=5.0.0

Depends on vulnerable versions of test-exclude

node_modules/babel-plugin-istanbul


debug <=2.6.8 || 3.0.0 - 3.0.1

Regular Expression Denial of Service - https://npmjs.com/advisories/534

fix available via `npm audit fix --force`

Will install mocha@8.2.1, which is a breaking change

node_modules/mocha/node_modules/debug

node_modules/nock/node_modules/debug

node_modules/nyc/node_modules/debug

mocha 0.6.0 - 6.2.2 || 7.0.0-esm1 - 7.1.0

Depends on vulnerable versions of debug

Depends on vulnerable versions of growl

Depends on vulnerable versions of mkdirp

node_modules/mocha

nock 0.29.0 - 7.7.3 || 8.1.0 - 9.0.2

Depends on vulnerable versions of debug

Depends on vulnerable versions of lodash

node_modules/nock


growl <1.10.2

Severity: critical

Command Injection - https://npmjs.com/advisories/146

fix available via `npm audit fix --force`

Will install mocha@8.2.1, which is a breaking change

node_modules/growl

mocha 0.6.0 - 6.2.2 || 7.0.0-esm1 - 7.1.0

Depends on vulnerable versions of debug

Depends on vulnerable versions of growl

Depends on vulnerable versions of mkdirp

node_modules/mocha


handlebars <=4.7.3

Severity: critical

Prototype Pollution - https://npmjs.com/advisories/1164

Denial of Service - https://npmjs.com/advisories/1300

Arbitrary Code Execution - https://npmjs.com/advisories/1316

Arbitrary Code Execution - https://npmjs.com/advisories/1324

Prototype Pollution - https://npmjs.com/advisories/755

Depends on vulnerable versions of optimist

fix available via `npm audit fix`

node_modules/nyc/node_modules/handlebars


ini <1.3.6

Prototype Pollution - https://npmjs.com/advisories/1589

No fix available

node_modules/fsevents/node_modules/ini

node_modules/npm/node_modules/ini

npm <=7.1.0

Depends on vulnerable versions of ini

node_modules/npm

david <=12.0.0

Depends on vulnerable versions of npm

node_modules/david


lodash <=4.17.18

Severity: high

Prototype Pollution - https://npmjs.com/advisories/1065

Prototype Pollution - https://npmjs.com/advisories/1523

Prototype Pollution - https://npmjs.com/advisories/577

Prototype Pollution - https://npmjs.com/advisories/782

fix available via `npm audit fix --force`

Will install nock@13.0.5, which is a breaking change

node_modules/nock/node_modules/lodash

node_modules/nyc/node_modules/lodash

nock 0.29.0 - 7.7.3 || 8.1.0 - 9.0.2

Depends on vulnerable versions of debug

Depends on vulnerable versions of lodash

node_modules/nock


mem <4.0.0

Denial of Service - https://npmjs.com/advisories/1084

fix available via `npm audit fix --force`

Will install documentation@13.1.0, which is a breaking change

node_modules/mem

os-locale 2.0.0 - 3.0.0

Depends on vulnerable versions of mem

node_modules/os-locale

yargs 4.0.0-alpha1 - 12.0.5 || 14.1.0 || 15.0.0 - 15.2.0

Depends on vulnerable versions of os-locale

Depends on vulnerable versions of yargs-parser

node_modules/documentation/node_modules/yargs

node_modules/nyc/node_modules/yargs

node_modules/yargs

depcheck 0.6.0 - 0.7.2

Depends on vulnerable versions of yargs

node_modules/depcheck

documentation 4.0.0-beta.17 - 13.0.1

Depends on vulnerable versions of yargs

node_modules/documentation

nyc 5.0.0 - 13.3.0

Depends on vulnerable versions of micromatch

Depends on vulnerable versions of mkdirp

Depends on vulnerable versions of test-exclude

Depends on vulnerable versions of yargs

Depends on vulnerable versions of yargs-parser

node_modules/nyc


minimist <0.2.1 || >=1.0.0 <1.2.3

Prototype Pollution - https://npmjs.com/advisories/1179

fix available via `npm audit fix --force`

Will install mocha@8.2.1, which is a breaking change

node_modules/fsevents/node_modules/minimist

node_modules/fsevents/node_modules/rc/node_modules/minimist

node_modules/minimist

node_modules/nyc/node_modules/minimist

mkdirp 0.4.1 - 0.5.1

Depends on vulnerable versions of minimist

node_modules/fsevents/node_modules/mkdirp

node_modules/mkdirp

node_modules/nyc/node_modules/mkdirp

mocha 0.6.0 - 6.2.2 || 7.0.0-esm1 - 7.1.0

Depends on vulnerable versions of debug

Depends on vulnerable versions of growl

Depends on vulnerable versions of mkdirp

node_modules/mocha

nyc 5.0.0 - 13.3.0

Depends on vulnerable versions of micromatch

Depends on vulnerable versions of mkdirp

Depends on vulnerable versions of test-exclude

Depends on vulnerable versions of yargs

Depends on vulnerable versions of yargs-parser

node_modules/nyc

optimist >=0.6.0

Depends on vulnerable versions of minimist

node_modules/nyc/node_modules/optimist

handlebars <=4.7.3

Depends on vulnerable versions of optimist

node_modules/nyc/node_modules/handlebars


randomatic <3.0.0

Cryptographically Weak PRNG - https://npmjs.com/advisories/157

fix available via `npm audit fix`

node_modules/nyc/node_modules/randomatic

fill-range 1.0.0 - 2.2.3

Depends on vulnerable versions of randomatic

node_modules/nyc/node_modules/fill-range


tar <2.2.2 || >=3.0.0 <4.4.2

Severity: high

Arbitrary File Overwrite - https://npmjs.com/advisories/803

fix available via `npm audit fix`

node_modules/fsevents/node_modules/tar


yargs-parser <=13.1.1 || 14.0.0 - 15.0.0 || 16.0.0 - 18.1.1

Prototype Pollution - https://npmjs.com/advisories/1500

fix available via `npm audit fix --force`

Will install nyc@15.1.0, which is a breaking change

node_modules/documentation/node_modules/yargs-parser

node_modules/nyc/node_modules/yargs-parser

node_modules/yargs-parser

nyc 5.0.0 - 13.3.0

Depends on vulnerable versions of micromatch

Depends on vulnerable versions of mkdirp

Depends on vulnerable versions of test-exclude

Depends on vulnerable versions of yargs

Depends on vulnerable versions of yargs-parser

node_modules/nyc

yargs 4.0.0-alpha1 - 12.0.5 || 14.1.0 || 15.0.0 - 15.2.0

Depends on vulnerable versions of os-locale

Depends on vulnerable versions of yargs-parser

node_modules/documentation/node_modules/yargs

node_modules/nyc/node_modules/yargs

node_modules/yargs

depcheck 0.6.0 - 0.7.2

Depends on vulnerable versions of yargs

node_modules/depcheck

documentation 4.0.0-beta.17 - 13.0.1

Depends on vulnerable versions of yargs

node_modules/documentation


31 vulnerabilities (25 low, 3 high, 3 critical)


To address issues that do not require attention, run:

npm audit fix


To address all issues possible (including breaking changes), run:

npm audit fix --force


Some issues need review, and may require choosing

a different dependency.

######END QUOTE######

  • Guest
  • Dec 29 2020
  • Will not implement
  • Attach files
  • Guest commented
    25 Jan, 2021 09:03pm

    Hi Daniela,

    I don't think this is a specific issue. I have the same issue with every install of the agent on a Linux machine.

  • Admin
    Daniela Weisz commented
    25 Jan, 2021 08:18pm

    hey Hendrik, it looks like you've been helped out with our support team for this particular issue. This idea is going to be marked as Will Not Implement, since this seems to be a specific issue vs. a feature improvement. If you have a specific feature improvement around our Linux Agent please do submit an idea for that, thanks!