search

SassDoc / sassdoc

Release the docs!
http://sassdoc.com
MIT License
1.41k stars 56 forks source link

latest sassdoc has vulnerability issues #529

Closed rajkumar-mariselvaraj closed 5 years ago

rajkumar-mariselvaraj commented 5 years ago

Low Regular Expression Denial of Service

Package uglify-js

Patched in >=2.6.0

Dependency of sassdoc

Path sassdoc > sassdoc-theme-default > swig > uglify-js

More info https://nodesecurity.io/advisories/48

reneroth commented 5 years ago

Pretty much a non-issue in this use case.

pascalduez commented 5 years ago

@reneroth See, I can also thumbs up ;)

pascalduez commented 5 years ago

Closing in favor of SassDoc/sassdoc-theme-default#96