npm audit: Regular Expression Denial of Service
kevinlandsberg opened this issue · 1 comments
High Regular Expression Denial of Service
Package trim-newlines
Patched in >=3.0.1 <4.0.0 || >=4.0.1
Dependency of gulp-sass [dev]
Path gulp-sass > node-sass > meow > trim-newlines
More info https://npmjs.com/advisories/1753
yes, there is such a problem
┌───────────────┬──────────────────────────────────────────────────────────────┐
│ High │ Regular Expression Denial of Service │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Package │ trim-newlines │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Patched in │ >=3.0.1 <4.0.0 || >=4.0.1 │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Dependency of │ gulp-sass [dev] │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ Path │ gulp-sass > node-sass > meow > trim-newlines │
├───────────────┼──────────────────────────────────────────────────────────────┤
│ More info │ https://npmjs.com/advisories/1753 │
└───────────────┴──────────────────────────────────────────────────────────────┘