node-sass-middleware icon indicating copy to clipboard operation
node-sass-middleware copied to clipboard
verified publisher icon sass

Regular expression denial of service in scss-tokenizer

Open WardBrink opened this issue 3 years ago • 1 comments

Hi,

There is a vulnerability in this package, which can be updated if the dependency scss-tokenizer is at least version 0.4.3.

See also: https://github.com/advisories/GHSA-7mwh-4pqv-wmr8

Could you patch this?

WardBrink avatar Aug 26 '22 20:08 WardBrink

This seems to be fixed already.

YasharF avatar Jul 13 '23 21:07 YasharF