-
## Description
snyk package reports vulnerability with [remove-markdown](https://github.com/stiang/remove-markdown) dependency
See [this issue](https://github.com/stiang/remove-markdown/issues/4…
-
I'm seeing the following:
The regular expression `"^g\\s++[a-z]++(\\s++[a-z]++=[^\\s]*+)*+$"` is vulnerable to a denial of service attack (ReDOS)
However, this regex is using possessive quantifi…
-
![snyk-top-banner](https://github.com/andygongea/OWASP-Benchmark/assets/818805/c518c423-16fe-447e-b67f-ad5a49b5d123)
### Snyk has created this PR to fix 1 vulnerabilities in the npm dependencies of t…
-
When I download this kit & do npm install - I get some vulnerabilities, 3 moderate and 5 high. I'm not a node dev, not sure exactly how to address them, I'd fix them myself.
-
# Description
ReDoS vulnerability is an algorithmic complexity vulnerability that usually appears in backtracking-kind regex engines, e.g. the python default regex engine. The attacker can construct …
-
**Describe the bug**
Snyk is reporting this package to contain a ReDoS vulnerability via the D3 package.
**To Reproduce**
https://app.snyk.io/test/npm/@swimlane/ngx-charts/18.0.1?tab=issues
*…
-
```bash
npm WARN deprecated tough-cookie@0.9.14: ReDoS vulnerability parsing Set-Cookie https://nodesecurity.io/advisories/130
```
-
https://twitter.com/kawaz/status/1477809915729448961?t=yDJcv4_ZsnpbLKiBoUmpbw&s=19
正規表現登録時に時間計算して長過ぎたら弾くバリデーションとか入れる……?
-
Hey there,
It appears that the current version of react-simple-maps relies on a vulnerable version of another package, d3-color. My team and I are getting the following Dependabot Alert:
> ### D…
-
### What's the feature?
Functionality in the tldraw API that allows one to get a snapshot of the undo/redo history to persist it. This could be used in the case of switching between tabs and differen…