You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I installed docsify-cli v4.4.4 and got several security reports in my repo:
Inefficient Regular Expression Complexity in marked: docsify-cli@4.4.4 requires marked@^1.2.9 via a transitive dependency on docsify@4.13.1 typedoc@0.24.8 requires marked@^4.3.0
Got allows a redirect to a UNIX socket: docsify-cli@4.4.4 requires got@^9.6.0 via a transitive dependency on package-json@6.5.0
Regular Expression Denial of Service (REDoS) in Marked: docsify-cli@4.4.4 requires marked@^1.2.9 via a transitive dependency on docsify@4.13.1 typedoc@0.24.8 requires marked@^4.3.0
The text was updated successfully, but these errors were encountered:
update-notifier is resulting in a got vulnerability. I honestly cannot understand why this CLI even needs an update notifier, or such extra fancy features as direct dependencies.
I installed docsify-cli v4.4.4 and got several security reports in my repo:
The text was updated successfully, but these errors were encountered: