eslint-plugin-node icon indicating copy to clipboard operation
eslint-plugin-node copied to clipboard

Published 20 hours ago verified publisher icon mysticatea

bump minimatch version

Open Yavorss opened this issue 3 years ago • 3 comments

"A vulnerability was found in the minimatch package. This flaw allows a Regular Expression Denial of Service (ReDoS) when calling the braceExpand function with specific arguments, resulting in a Denial of Service." Affected versions: < 3.0.5

Yavorss avatar Oct 26 '22 13:10 Yavorss

+1 please

beInDev avatar Feb 09 '23 10:02 beInDev

+1

samrat-ghosh-13 avatar Jul 20 '23 11:07 samrat-ghosh-13

eslint-plugin-n is the maintained version of this module.

We switched to it in eg. eslint-config-standard / standard and it is maintained by me and other members of the official ESLint community organization.

Try that module out and if it isn't fixed there, then open a new PR in that project.

voxpelli avatar Aug 13 '23 12:08 voxpelli