Skip to content
This repository has been archived by the owner on Dec 8, 2024. It is now read-only.

Commit

Permalink
fixes known vulnerability CVE-2017-18077 of package brace-expansion
Browse files Browse the repository at this point in the history 
Known vulnerability found
CVE-2017-18077
Moderate severity
index.js in brace-expansion before 1.1.7 is vulnerable to Regular Expression Denial of Service (ReDoS) attacks, as de...

package-lock.json update suggested:
brace-expansion ~> 1.1.7
Always verify the validity and compatibility of suggestions with your codebase.

[email protected] ~> [email protected] ~> [email protected]
  • Loading branch information
@ivoputzer
ivoputzer committed Mar 16, 2018
1 parent bc84c31 commit ccbb619
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -112,7 +112,7 @@
"async": "1.x",
"escodegen": "1.8.x",
"esprima": "2.7.x",
"glob": "^5.0.15",
"glob": "^7.1.2",
"handlebars": "^4.0.1",
"js-yaml": "3.x",
"mkdirp": "0.5.x",
Expand Down

0 comments on commit ccbb619

Please sign in to comment.