bcomnes / npm-run-all2

A CLI tool to run multiple npm-scripts in parallel or sequential. (Maintenance fork)
MIT License
262 stars 13 forks source link

dependency shell-quote CVE-2021-42740 #88

Closed aleinin closed 2 years ago

aleinin commented 2 years ago

Please upgrade npm package shell-quote to 1.7.3+ to patch https://github.com/advisories/GHSA-g4rg-993r-mgx7

(issue copied from https://github.com/mysticatea/npm-run-all/issues/235)

bcomnes commented 2 years ago

https://github.com/bcomnes/npm-run-all2/releases/tag/v6.0.2