Closed nbouvrette closed 11 months ago
will we be getting any update on this?
@michaelficarra is there any way you can help with this?
I think there is already a PR ready as well https://github.com/estools/escodegen/pull/457
Duplicate of #458. You can upgrade to the latest version of escodegen to resolve this issue.
My bad @michaelficarra I didn't realize optionator was removed in this commit
optionator 0.8.3 - 0.9.1 depends on a vulnerable version of
word-wrap
The
word-wrap
package is vulnerable to Regular Expression Denial of Service.Details here: https://github.com/advisories/GHSA-j8xg-fqg3-53r7
Please update to opionator to version 0.9.3 to fix this issue.
Dependency tree: