-
-
Notifications
You must be signed in to change notification settings - Fork 38
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Vulnerability with cross-spawn dependency - severity high #58
Comments
iamkevinv
changed the title
Vulnerability with cross-spawn dependency - severity high
Vulnerability with cross-spawn dependency from @prisma/internals - severity high
Nov 21, 2024
iamkevinv
changed the title
Vulnerability with cross-spawn dependency from @prisma/internals - severity high
Vulnerability with cross-spawn dependency - severity high
Nov 21, 2024
iamkevinv
added a commit
to iamkevinv/prisma-dbml-generator
that referenced
this issue
Nov 21, 2024
Started prepping a PR, but noticed
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Just raising the advisory here about the ReDoS vuln reported via npm audit, hoping to get a package update to @prisma/internals@^5.22.0 and @prisma/generator-helper@^5.22.0
The advisory details were:
cross-spawn 7.0.0 - 7.0.4
Severity: high
Regular Expression Denial of Service (ReDoS) in cross-spawn - GHSA-3xgq-45jj-v275
The text was updated successfully, but these errors were encountered: