npm

Severity: low

Cryptographically Weak PRNG

randomatic

Overview

Affected versions of randomatic generate random values using a cryptographically weak psuedo-random number generator. This may result in predictable values instead of random values as intended.

Remediation

Update to version 3.0.0 or later.

Resources

Have content suggestions? Send them to [email protected]

Advisory timeline

  1. published

    Advisory published
    Apr 14th, 2017
  2. reported

    Initial report by Sven Slootweg
    Nov 9th, 2016