Regular Expression Denial of Servicenormalize-url
normalize-url package before 4.5.1, 5.x before 5.3.1, and 6.x before 6.0.1 has a ReDoS (regular expression denial of service) issue because it has exponential performance for data: URLs.
Upgrade to versions 4.5.1, 5.3.1, 6.0.1 or later
Have content suggestions? Visit npmjs.com/support.
publishedAdvisory PublishedJun 8th, 2021
reportedReported by AnonymousJun 8th, 2021