Security alert: fstream (node-sass)

manusa / isotope-mail

Isotope Mail Client

https://blog.marcnuri.com/isotope-mail-client-introduction/

Apache License 2.0

237 stars 44 forks source link

Security alert: fstream (node-sass) #313

Closed manusa closed 5 years ago

manusa commented 5 years ago

WS-2019-0100 More information moderate severity Vulnerable versions: < 1.0.12 Patched version: 1.0.12 Versions of fstream prior to 1.0.12 are vulnerable to Arbitrary File Overwrite.

Relates to:

sass/node-sass#2676

manusa commented 5 years ago

Alerts gone after dependency version bump