start-to-grunt icon indicating copy to clipboard operation
start-to-grunt copied to clipboard

Published 20 hours ago verified publisher icon kn9ts

Fix for the ReDOS vulnerability

Open snyk-community opened this issue 8 years ago • 0 comments

start-to-grunt is currently affected by the high-severity ReDOS vulnerability.

Vulnerable module: minimatch Introduced through: grunt

This PR fixes the ReDoS vulnerability by upgrading grunt to version 1.0.0.

Check out the Snyk test report to review other vulnerabilities that affect this repo.

Watch the repo to

  • get alerts if newly disclosed vulnerabilities affect this repo in the future.
  • generate pull requests with the fixes you want, or let us do the work: when a newly disclosed vulnerability affects you, we'll submit a fix to you right away.

Stay secure, The Snyk team

snyk-community avatar Oct 25 '16 07:10 snyk-community