Commit 9a85e10

committed

build(package): fix 3 moderate severity vulnerabilities

brace-expansion <1.1.13 Severity: moderate brace-expansion: Zero-step sequence causes process hang and memory exhaustion - GHSA-f886-m6hf-6m8v fix available via `npm audit fix` node_modules/brace-expansion serialize-javascript <7.0.5 Severity: moderate Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects - GHSA-qj8w-gfj5-8c6v fix available via `npm audit fix` node_modules/@rollup/plugin-terser/node_modules/serialize-javascript yaml 2.0.0 - 2.8.2 Severity: moderate yaml is vulnerable to Stack Overflow via deeply nested YAML collections - GHSA-48c2-rrv3-qjmp fix available via `npm audit fix` node_modules/yaml

1 parent b1f7f1b commit 9a85e10Copy full SHA for 9a85e10

1 file changed

+16

-16

lines changed

package-lock.json

1 file changed

+16

-16

lines changed

`‎package-lock.json‎`

Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

Comments

(0)