Vulnerability in minimatch 3.0.4
kachkaev opened this issue ยท 2 comments
kachkaev commented
Details: https://nvd.nist.gov/vuln/detail/CVE-2022-3517
The version of minimatch is pinned in package.json:
Line 70 in c7a4043
Number of weekly package downloads: 2.5M
Could you please merge #180 and release a new version? ๐
kachkaev commented
@TooTallNate @leo ๐
imki123 commented
Please update minimatch@^3.0.5 ๐