asar asar not verifying filenames before passing them to minimatch

asar not verifying filenames before passing them to minimatch

Open Stanzilla opened this issue 2 years ago • 0 comments

While working on tracking down a bug with sharp, we found that asar is not verifying file names before passing them to its minimatch dependency.

Jun 11 '22 18:06 Stanzilla