search

micromatch / glob-fs

file globbing for node.js. speedy and powerful alternative to node-glob. This library is experimental and does not work on windows!
http://jonschlinkert.github.io/glob-fs
MIT License
55 stars 17 forks source link

npm audit give high status vulnerability #34

Open SaadbinWaheed opened 4 years ago

SaadbinWaheed commented 4 years ago

running npm audit with latest glob-fs gives:

High Prototype Pollution Package set-value Patched in >=2.0.1 <3.0.0 || >=3.0.1

Would you be updating package.json to use latest set-value (currently it is ^0.2.0).