Wappler 7.4.0, macOS 26.1, Wappler local server node.js project.
In my node project I found these vulnerabilities. I tried fixing them by npm audit fix and npm audit fix –force but nothing happens.
You’re using wappler-advanced-logger extension, I moved your topic out of the Wappler bug reports category because this issue is caused by a third-party extension
I tried to remove it, but it’s not being removed.
Try running those npm commands on your computer (host system) instead of inside the container. Apparently, package.json is not bind-mount to inside the container, so any changes done inside the container are not reflected back to the host’s filesystem. I did make a feature request somewhere to fix this.
Then, you might need to re-build the container (Stop and Full Deploy)
P.S.: I’m assuming you’re using Docker, if not then disregard my advice
Unfortunately I’m not using docker in this project. 
I think pino is now in version 10.1.0, message shows v9
Maybe update the version number in package file to force update.
Worth checking version numbers for pino-http also.