Semver ~5.0.3 has vulnerability

Question

gun0317 opened this issue a year ago · 1 comments

semver of version under 5.7.2 has vulnerability - Regular Expression Denial of Service (ReDoS)
https://security.snyk.io/package/npm/semver

Please consider upgrading semver to 5.7.2 as this version fixes the issue.

Answer 1 · 2023-08-22T01:36:13.000Z

My bandwidth is somewhat limited at the moment. Do you mind creating a PR and testing it?