npm reports high severity security risk in dependency `get-func-name`

IATI / js-validator-api

Pure JavaScript IATI validator implementation

GNU Affero General Public License v3.0

1 stars 1 forks source link

npm reports high severity security risk in dependency `get-func-name` #529

Open simon-20 opened 1 year ago

simon-20 commented 1 year ago

Brief Description

# npm audit report

get-func-name  <2.0.1
Severity: high
Chaijs/get-func-name vulnerable to ReDoS - https://github.com/advisories/GHSA-4q6p-r6v2-jvc5
fix available via `npm audit fix`
node_modules/get-func-name

Severity High

Investigate whether the updated version is compatible with rest of setup, and upgrade if so.