-
Notifications
You must be signed in to change notification settings - Fork 552
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
critical: ReDoS vulnerability from inquirer v8.2.0 #883
Comments
ChidanandanP
changed the title
ReDoS vulnerability from inquirer v8.2.0
critical: ReDoS vulnerability from inquirer v8.2.0
Dec 16, 2021
1 task
#874 has been merged and new release is out with the changes included. This can be closed. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi Team, there is a high vulnerability found in ansi-regex library for Regular Expression Denial of Service (ReDoS).
This library is used by inquirer v8.2.0.
Please increase the inquirer library to latest version. Already a PR is open for that, please merge it as soon as possible:
#874
Refer the below urls to find more about vulnerability
https://snyk.io/advisor/npm-package/inquirer
https://snyk.io/vuln/npm:ansi-regex
The text was updated successfully, but these errors were encountered: