yes, for both of them
It does throw some warnings that I captured earlier:
rich@raspberrypi:~/MagicMirror/modules/internet-monitor $ npm install
added 359 packages, and audited 360 packages in 38s
99 packages are looking for funding
run npm fund for details
5 vulnerabilities (2 moderate, 3 high)
Some issues need review, and may require choosing
a different dependency.
Run npm audit for details.
this happened on both the pi installation and the debian vbox version.
I ran the audit on the pi version:
npm audit reportgot <=11.8.3
Severity: high
Got allows a redirect to a UNIX socket - https://github.com/advisories/GHSA-pfrx-2q88-qq97
Depends on vulnerable versions of cacheable-request
No fix available
node_modules/got
download >=4.0.0
Depends on vulnerable versions of got
node_modules/download
@lh2020/speedtest-net *
Depends on vulnerable versions of download
node_modules/speedtest-net
http-cache-semantics <4.1.1
Severity: high
http-cache-semantics vulnerable to Regular Expression Denial of Service - https://github.com/advisories/GHSA-rc47-6667-2j5j
No fix available
node_modules/http-cache-semantics
cacheable-request 0.1.0 - 2.1.4
Depends on vulnerable versions of http-cache-semantics
node_modules/cacheable-request
5 vulnerabilities (2 moderate, 3 high)
Some issues need review, and may require choosing
a different dependency.