search

gruntjs / grunt-contrib-connect

Start a static web server.
http://gruntjs.com/
MIT License
716 stars 147 forks source link

Fix vulnerability from websocket dependency: Denial of Service #271

Closed gaurav517 closed 1 week ago

gaurav517 commented 2 years ago

Current dependency version for websocket is vulnerable to regular expression denial of service. image

gaurav517 commented 2 years ago

websocket vulnerability is fixed in https://github.com/websockets/ws/commit/00c425ec77993773d823f018f64a5c44e17023ff

mhassan1 commented 2 weeks ago

This should be resolved by https://github.com/gruntjs/grunt-contrib-connect/pull/289.