Channels
bot-training
community
contributing
general
github-activity
info
introductions
new-releases
random
security
support-questions
welcome-0xdelusion
welcome-aj-ya
welcome-aleksandrc
welcome-alpinjs
welcome-amberlamps1
welcome-andrew-rodriguez
welcome-ankit-choudhary
welcome-anthony-stod-custodio
welcome-call-in
welcome-chwalbox
welcome-claybiokiller
welcome-co7e
welcome-cosmoecwsa
welcome-devdag
welcome-dinso
welcome-drebotelho
welcome-elio
welcome-ernest
welcome-foxbarrington
welcome-fromscratch
welcome-galto4ir
welcome-goetzum
welcome-hay-kot
welcome-himanshu-kukreja
welcome-hossambarakat
welcome-ichikawakazuto
welcome-jahir9991
welcome-jamesl
welcome-jerry123424
welcome-john-oliver
welcome-jonas-alexanderson
welcome-jxyz
welcome-kelvinwop
welcome-kraz
welcome-lancekey
welcome-leoo
welcome-lukeacollins
welcome-m-j-mon
welcome-malik-khoja
welcome-marco
welcome-mardadi
welcome-meshguy
welcome-metamorph
welcome-mike-tectu
welcome-mirzok
welcome-mozomig
welcome-naberyou66_
welcome-nacer
welcome-namratha
welcome-naveenkumar
welcome-nightlight
welcome-nischith
welcome-notankit
welcome-olawumi
welcome-pavan-kumar-reddy-n
welcome-pineappaul
welcome-poothebear
welcome-rick
welcome-samuel-qosenergy
welcome-samuelstroschein
welcome-shubhamgoel23
welcome-shubhamkaushal
welcome-sidebar
welcome-surajsli
welcome-suyash_
welcome-syntaxerror
welcome-tauno
welcome-tawnoz
welcome-teclali
welcome-tls
welcome-turbosepp
welcome-vikram_shadow
Title
a
Aithusa
02/07/2023, 4:49 PMI'm getting npm audit messages with supertokens-node
r
rp
02/07/2023, 8:18 PMhey @Aithusa which version of the node SDK are you using? We updated this dependency to >= 9
Hmm. We depend on ^9.0.0 of that lib.
Try reinstalling your node modules
a
Aithusa
02/07/2023, 9:20 PMI deleted my node_modules and ran npm install but I'm still getting the same audit report
r
rp
02/08/2023, 4:57 AMwhats the version of jsonwebtoken in package-lock.json?
a
Aithusa
02/09/2023, 5:50 PM"jsonwebtoken": "^8.5.1",r
rp
02/09/2023, 6:29 PMright. Thats why.
So our sdk depends on ^9.0.0
maybe something else is adding an older version to your app
Might wanna check that out
a
Aithusa
02/10/2023, 3:25 AMIt also happens when I do npm init and npm install supertokens-node in a fresh project
r
rp
02/10/2023, 5:08 AMhmm. Ok let me check. Maybe some depdency of ours thats causing an issue
hey @Aithusa - i just tried the fresh install as well and it gave jsonwebtoken version 9.0.0.
Can you send over your package-lock.json file here?
a
Aithusa
02/10/2023, 6:25 AMsh
npm init
npm install supertokens-nodeMy version is 9.0.0 for jsonwebtokens
r
rp
02/10/2023, 6:30 AM@kakashi_44 can help here
k
kakashi_44
02/10/2023, 11:46 AMHey @Aithusa , can you try doing
npm install "https://github.com/supertokens/supertokens-node.git#package-version-update" --savelet me know if it fixes the issue for you and I'll create a PR for that
a
Aithusa
02/10/2023, 5:11 PMYes that seems to work
r
rp
02/10/2023, 5:11 PMok great! we will release this version