npm WARN on install MM

renevandenbroek

On a new raspberry pi with new OS I get the following WARN’s after installing MM.

MagicMirror installation finished successfully! 

npm WARN optional SKIPPING OPTIONAL DEPENDENCY: fsevents@2.1.3 (node_modules/fsevents):
npm WARN notsup SKIPPING OPTIONAL DEPENDENCY: Unsupported platform for fsevents@2.1.3: wanted {"os":"darwin","arch":"any"} (current: {"os":"linux","arch":"arm"})

added 1145 packages from 643 contributors and audited 1149 packages in 155.683s

84 packages are looking for funding
  run `npm fund` for details

found 1 low severity vulnerability
  run `npm audit fix` to fix them, or `npm audit` for details

(1.) I tried “npm audit fix” but that does not resolves the problem.

npm WARN @octokit/plugin-request-log@1.0.2 requires a peer of @octokit/core@>=3 but none is installed. You must install peer dependencies yourself.
npm WARN optional SKIPPING OPTIONAL DEPENDENCY: fsevents@2.1.3 (node_modules/fsevents):
npm WARN notsup SKIPPING OPTIONAL DEPENDENCY: Unsupported platform for fsevents@2.1.3: wanted {"os":"darwin","arch":"any"} (current: {"os":"linux","arch":"arm"})

up to date in 15.389s

84 packages are looking for funding
  run `npm fund` for details

fixed 0 of 1 vulnerability in 1101 scanned packages
  1 package update for 1 vulnerability involved breaking changes
  (use `npm audit fix --force` to install breaking changes; or refer to `npm audit` for steps to fix these manually)

(2.) Than I did a " npm audit" with the following result

 === npm audit security report ===                        
                                                                                
# Run  npm install --save-dev spectron@13.0.0  to resolve 1 vulnerability
SEMVER WARNING: Recommended action is a potentially breaking change
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ Low           │ Prototype Pollution                                          │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package       │ minimist                                                     │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ spectron [dev]                                               │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path          │ spectron > webdriverio > optimist > minimist                 │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info     │ https://npmjs.com/advisories/1179                            │
└───────────────┴──────────────────────────────────────────────────────────────┘


found 1 low severity vulnerability in 1101 scanned packages
  1 vulnerability requires semver-major dependency updates.

(3.)Than I did “npm install --save-dev spectron@13.0.0” with the following result

> electron-chromedriver@11.0.0 install /home/pi/MagicMirror/node_modules/electron-chromedriver
> node ./download-chromedriver.js


> spectron@13.0.0 postinstall /home/pi/MagicMirror/node_modules/spectron
> node lib/rpath-fix.js

npm WARN @octokit/plugin-request-log@1.0.2 requires a peer of @octokit/core@>=3 but none is installed. You must install peer dependencies yourself.
npm WARN optional SKIPPING OPTIONAL DEPENDENCY: fsevents@2.1.3 (node_modules/fsevents):
npm WARN notsup SKIPPING OPTIONAL DEPENDENCY: Unsupported platform for fsevents@2.1.3: wanted {"os":"darwin","arch":"any"} (current: {"os":"linux","arch":"arm"})

+ spectron@13.0.0
added 87 packages from 131 contributors, removed 107 packages, updated 16 packages, moved 2 packages and audited 1129 packages in 42.715s

92 packages are looking for funding
  run `npm fund` for details

found 0 vulnerabilities

(4.)" npm audit" gives now

                                                           
                       === npm audit security report ===                        
                                                                                
found 0 vulnerabilities
 in 1122 scanned packages

And now what should i do with the WARN’s that came on with (3.)?

sdetweil

@renevandenbroek nothing. just warnings u cant do anything about

renevandenbroek

@sdetweil thanks for your reply

BKeyport

@renevandenbroek developers of the underlying code are moving faster than MagicMirror can and/or is willing to update. For various calls and whatnot, the packages have changed, and even the core programs are messed up a bit, for example, some things are into double digit version numbers, which are fooling version checking that states that you have to have a version higher than a specific single digit. (It sees 1, it should be seeing 10)

As long as it runs, you’re good.