You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
mocha5.1.0 - 9.2.1
Depends on vulnerable versions of yargs-unparser <=1.6.3
which depends on vulnerable versions of flat<5.0.1 flat vulnerable to Prototype Pollution - GHSA-2j2x-2gpw-g8fm
Upgrading mocha will also help upgrade minimatch minimatch <3.0.5 which has ReDoS vulnerability - GHSA-f8q6-p94x-37v3
The text was updated successfully, but these errors were encountered:
nuhasha
changed the title
Update mocha package to v.10.2.0
Update mocha to v.10.2.0
Feb 17, 2023
mocha5.1.0 - 9.2.1Depends on vulnerable versions of
yargs-unparser <=1.6.3which depends on vulnerable versions of
flat<5.0.1flatvulnerable to Prototype Pollution - GHSA-2j2x-2gpw-g8fmUpgrading
mochawill also help upgrademinimatchminimatch <3.0.5which has ReDoS vulnerability - GHSA-f8q6-p94x-37v3The text was updated successfully, but these errors were encountered: