reaction-cli icon indicating copy to clipboard operation
reaction-cli copied to clipboard
verified publisher icon reactioncommerce

[SECURITY] command-exists package <1.2.4 vulnerability

Open impactmass opened this issue 7 years ago • 0 comments

Issue Description

Got this when installing the CLI on a new environment:

WARN notice [SECURITY] command-exists has the following vulnerability: 1 critical. Go here for more details: https://nodesecurity.io/advisories?search=command-exists&version=1.2.2

Snyk also reports it here https://snyk.io/vuln/npm:command-exists

Steps to Reproduce

npm install -g reaction-cli

Possible Solution

Latest version of the package may have been fixed

impactmass avatar Jul 25 '18 20:07 impactmass