You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
mocha5.1.0 - 9.2.1
Depends on vulnerable versions of yargs-unparser <=1.6.3
which depends on vulnerable versions of flat<5.0.1 flat vulnerable to Prototype Pollution - GHSA-2j2x-2gpw-g8fm
Upgrading mocha will also help upgrade minimatch minimatch <3.0.5 which has ReDoS vulnerability - GHSA-f8q6-p94x-37v3
The text was updated successfully, but these errors were encountered:
nuhasha
changed the title
Update mocha package to v.10.2.0
Update mocha to v.10.2.0
Feb 17, 2023
mocha
5.1.0 - 9.2.1
Depends on vulnerable versions of
yargs-unparser <=1.6.3
which depends on vulnerable versions of
flat
<5.0.1
flat
vulnerable to Prototype Pollution - GHSA-2j2x-2gpw-g8fmUpgrading
mocha
will also help upgrademinimatch
minimatch <3.0.5
which has ReDoS vulnerability - GHSA-f8q6-p94x-37v3The text was updated successfully, but these errors were encountered: