Nine Pedestrians Mesmerized
    Severity: high

    Regular Expression Denial of Service

    trim-newlines

    Overview

    trim-newlines before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service (ReDoS) for the .end() method.

    Remediation

    Upgrade to versions 3.0.1 or 4.0.1 or later

    Resources

    Have content suggestions? Visit npmjs.com/support.

    Advisory timeline

    1. published

      Advisory Published
      Jun 7th, 2021
    2. reported

      Reported by Anonymous
      Jun 7th, 2021