You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
for-ever monitor is using an old version of chokidar
"chokidar": "^1.7.0" and this has a dependency on braces package which has below vulnerability.
WS-2019-0019
(https://github.com/micromatch/braces/commit/abdafb0cae1e0c00f184abbadc692f4eaa98f451)
moderate severity
Vulnerable versions: < 2.3.1
Patched version: 2.3.1
Version of braces prior to 2.3.1 are vulnerable to Regular Expression Denial of Service (ReDoS). Untrusted input may cause catastrophic backtracking while matching regular expressions. This can cause the application to be unresponsive leading to Denial of Service.
Can we expect a new release after the dependencies being updated ?
The text was updated successfully, but these errors were encountered:
for-ever monitor is using an old version of
chokidar
"chokidar": "^1.7.0" and this has a dependency on
braces
package which has below vulnerability.Can we expect a new release after the dependencies being updated ?
The text was updated successfully, but these errors were encountered: