Semver ~5.0.3 has vulnerability
gun0317 opened this issue · 1 comments
gun0317 commented
semver
of version under 5.7.2 has vulnerability - Regular Expression Denial of Service (ReDoS)
https://security.snyk.io/package/npm/semver
Please consider upgrading semver
to 5.7.2 as this version fixes the issue.
twolfson commented
My bandwidth is somewhat limited at the moment. Do you mind creating a PR and testing it?