When i'm commit i am facing this problem that says:
GitHub found 2 vulnerabilities on my github repository default branch (1 high, 1 moderate). To find out more, visit:
mygithub reposity/security/dependabot
I tried to solve this but failed.
Once generated, you can verify whether the proposed changes don't break anything, then merge the code:
You can also try to manually resolve these issues locally using:
npm audit fix
or
npm install snyk -g
snyk auth
snyk test
snyk wizard
And then push the changes.
Or manually update the dependencies with vulnerabilities:
// use @latest or a more specific non-vulnerable version
npm install package@latest --save