karma-phantomjs-launcher icon indicating copy to clipboard operation
karma-phantomjs-launcher copied to clipboard

Published 20 hours ago verified publisher icon karma-runner

npm audit vulnerability [Prototype Pollution]

Open rdandnayak opened this issue 4 years ago • 1 comments

as soon as i run npm audit on my project using this package it flags out

Low Prototype Pollution Package minimist Patched in >=0.2.1 <1.0.0 || >=1.2.3 Dependency of karma-phantomjs-launcher [dev] Path karma-phantomjs-launcher > phantomjs-prebuilt > extract-zip > mkdirp > minimist

More info https://npmjs.com/advisories/1179

rdandnayak avatar Jun 01 '20 07:06 rdandnayak

I actually get a high priority one as well:

High Regular Expression Denial of Service Package tough-cookie Patched in >=2.3.3 Dependency of karma-phantomjs-launcher [dev] Path karma-phantomjs-launcher > phantomjs-prebuilt > request > tough-cookie More info https://npmjs.com/advisories/525

Valkah avatar Dec 03 '20 19:12 Valkah