There is a current vulnerability with word-wrap <= 1.2.3 (to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable).
word-wrap is used by optionator which is used by escodegen which is used by jsdom <v22.0.0
jsdom v22.0.0 removed support for running jsdom in the browser via a browserified bundle, removing the need for escodegen and hence for word-wrap
--
Tests with jsdom v22.1.0 with node v16 seem to be failing or succeeding at the same places as tests with jsdom v20.0.0 with node v14 do.
There is a current vulnerability with word-wrap <= 1.2.3 (to Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression within the result variable). word-wrap is used by optionator which is used by escodegen which is used by jsdom <v22.0.0
jsdom v22.0.0 removed support for running jsdom in the browser via a browserified bundle, removing the need for escodegen and hence for word-wrap
--
Tests with jsdom v22.1.0 with node v16 seem to be failing or succeeding at the same places as tests with jsdom v20.0.0 with node v14 do.