Received Vulnerabilities after Run npm install Command

[stanleyowen]

Describe the bug
In client side after running npm install command, I received 96 vulnerabilities (85 moderate, 11 high). Any solutions to this problem?

To Reproduce
Steps to reproduce the behavior:

1. Open cmd and change directory to client
2. Run npm install to download all necessary dependency
3. See error

Screenshots

Desktop (please complete the following information):

• OS: Windows 10 OS Version 2009 (Build 19043.1055)
• Browser Chrome
• Version 91.0.4472.106

[stanleyowen]

After working for some period of times, we have successfully fixed all high vulnerabilities in the latest commit on v0.5.9 branch - 4ebe81b. Note that we will continue to fix the remaining 10 moderate severity vulnerabilities. The latest audit report details:

# npm audit report

browserslist  4.0.0 - 4.16.4
Severity: moderate
Regular Expression Denial of Service - https://npmjs.com/advisories/1747
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking 
change
node_modules/react-dev-utils/node_modules/browserslist  react-dev-utils  >=6.0.0-next.03604a46
  Depends on vulnerable versions of browserslist      
  node_modules/react-dev-utils
    react-scripts  >=0.10.0-alpha.328cb32e
    Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
    Depends on vulnerable versions of react-dev-utils 
    Depends on vulnerable versions of webpack-dev-server
    node_modules/react-scripts

glob-parent  <5.1.2
Severity: moderate
Regular expression denial of service - https://npmjs.com/advisories/1751
fix available via `npm audit fix --force`
Will install [email protected], which is a breaking 
change
node_modules/watchpack-chokidar2/node_modules/glob-parent
node_modules/webpack-dev-server/node_modules/glob-parent
  chokidar  1.0.0-rc1 - 2.1.8
  Depends on vulnerable versions of glob-parent       
  node_modules/watchpack-chokidar2/node_modules/chokidar
  node_modules/webpack-dev-server/node_modules/chokidar
    watchpack-chokidar2  *
    Depends on vulnerable versions of chokidar        
    node_modules/watchpack-chokidar2
      watchpack  1.7.2 - 1.7.5
      Depends on vulnerable versions of watchpack-chokidar2
      node_modules/watchpack
        webpack  4.44.0 - 4.46.0
        Depends on vulnerable versions of watchpack   
        node_modules/webpack
    webpack-dev-server  2.0.0-beta - 3.11.2
    Depends on vulnerable versions of chokidar        
    node_modules/webpack-dev-server
      @pmmmwh/react-refresh-webpack-plugin  0.3.1 - 0.5.0-beta.4
      Depends on vulnerable versions of webpack-dev-server
      node_modules/@pmmmwh/react-refresh-webpack-plugin
        react-scripts  >=0.10.0-alpha.328cb32e        
        Depends on vulnerable versions of @pmmmwh/react-refresh-webpack-plugin
        Depends on vulnerable versions of react-dev-utils
        Depends on vulnerable versions of webpack-dev-server
        node_modules/react-scripts

10 moderate severity vulnerabilities

To address issues that do not require attention, run: 
  npm audit fix

To address all issues (including breaking changes), run:
  npm audit fix --force