-
-
Notifications
You must be signed in to change notification settings - Fork 4.4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Regular Expression Denial of Service (ReDoS) on dependency 'word-wrap' #17117
Comments
Hi @SharpFu, thanks for the issue! This is a problem in a transitive dependency so it doesn't seem like there's anything we can do at this point. Also, according Given the above, I'm closing this issue. If and when the problem is fixed in the dependencies, we could update eslint's package.json if that would help remove the warning. |
Hi @nzakas When will this be released on npm? |
integrate to package.json. Works great! |
Environment
Local ESLint version: 7.14.0
Global ESLint version: 7.14.0
Operating System: macos
What parser are you using?
Default (Espree)
What did you do?
Regular Expression Denial of Service (ReDoS) on dependency 'word-wrap'
What did you expect to happen?
when I use snyk check my project. and should not throw the error
What actually happened?
I am used "eslint": "^7.14.0" and when I use snyk check my project. and then throw a error as the image
Link to Minimal Reproducible Example
no example
Participation
Additional comments
No response
The text was updated successfully, but these errors were encountered: