Closed csantos1113 closed 6 months ago
Could it be possible to upgrade these dependencies to resolve ReDoS vulnerability?
ansi-regex
strip-ansi
cliui
Why? Most ReDOS vulnerabilities are self-attacks, meaning, not a vulnerability.
I'm going to close this issue because the version of ansi-regex that is indirectly installed is safe
Could it be possible to upgrade these dependencies to resolve ReDoS vulnerability?
ansi-regex
is used bystrip-ansi
strip-ansi
is used bycliui
cliui
is used by this package