Since a few days, I saw in my npm command the warning "3 moderate severity vulnerabilities".

I tried to execute npm audit fix --force but the warning is always here...

In fact, it's a library load by composer, not a library load by npm! I saw this important warn: Manual fix required in linked project at ./vendor/symfony/ux-vue/assets for @vitejs/plugin-vue@1.8.0 - 5.2.0

So, I tried with cd ./vendor/symfony/ux-vue/assets and run npm install && npm audit fix --force and the warning became **2** moderate severity vulnerabilities.

Finally, I returned to the root of my project with cd ../../../../ and I executed a npm audit fix that it fixed the last 2 vulnerabilities and update the package-lock.json file.