Closed stof closed 3 years ago
hmm, I don't have a windows environment to debug the test failure on windows.
Closing for lack of activity.
@sindresorhus Can we reopen this as updating globby version will get rid of the vulnerability in glob-parent
versions less than 5.0.1 We just need your help with fixing the failing tests related to the upgrade.
globby 9.2 depends on fast-glob 2, which itself depends on an old version of
glob-parent
vulnerable to ReDoS attacks. globby 11 depends on fast-glob 3, which uses the latestglob-parent
that has been patched.This requires a major version bump for 2 reasons: