Closed clepore closed 3 years ago
Per CVE-2020-7598:
minimist before 1.2.2 could be tricked into adding or modifying properties of Object.prototype using a "constructor" or "proto" payload.
⚠️ Threat level: Medium
Bower for some time is using version 0.2.1 which is patched
Per CVE-2020-7598:
⚠️ Threat level: Medium