-
Should we expect `regexploit` to warn about the kind of [Regular Expression Backtracking](https://accidentallyquadratic.tumblr.com/post/147713851567/regular-expression-backtracking-on-stackoverflow) w…
-
After installing `rollup-plugin-minify-html-literals`, `npm audit` shows:
```
html-minifier *
Severity: high
kangax html-minifier REDoS vulnerability - https://github.com/advisories/GHSA-pfq8-r…
-
とりあえず、現状の
```
npm start
```
は動きません。
-
During a recent audit of our project using Trapeze, a high severity security vulnerability was detected in the semver package (versions 7.0.0 to 7.5.1), which is a dependency of Trapeze. The vulnerabi…
-
This project uses the debug package
Debug has been tagged by the audit package as having low severity vulnerabilities.
Debug should be updated, unless there is a reason not to update it.
http…
-
"A group that contains a token with a quantifier must not have a quantifier of its own unless the quantified token inside the group can only be matched with something else that is mutually exclusive w…
-
Is this something the extension is vulnerable to since we're using a regular expression to parse the command messages or are we ok as is? What do we need to do or take into consideration to mitigate t…
-
## Vulnerabilities found for centraldashboard:1.9.0
```
For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your pr…
-
**Note:- This is not exactly a bug. This library is not maintained. I have found some workarounds and created this for people who use this library and face issues like `npm audit` reporting vulnerabil…
-
There is a Regular Expression Denial of Service (ReDoS) vulnerability in the glob-parent dependency.
This is the dependency tree:
- devDependencies (optional): react-scripts>webpack>watchpack>wa…