❤Nuclear Package Magnet

npm

log inorsign up

Regular Expression Denial of Service

Overview

Affected versions of fresh are vulnerable to regular expression denial of service when parsing specially crafted user input.

Remediation

Update to version 0.5.2 or later.

Advisory timeline

published
Advisory published
Sep 26th, 2017
reported
Sep 8th, 2017