Skip to content
This repository has been archived by the owner on Apr 23, 2020. It is now read-only.

Minimatch and RegExp DoS issue #205

Closed
davidbgk opened this issue Oct 21, 2016 · 2 comments
Closed

Minimatch and RegExp DoS issue #205

davidbgk opened this issue Oct 21, 2016 · 2 comments

Comments

@davidbgk
Copy link

Using yarn gave me that warning:

warning watai > wd > archiver > glob > minimatch@2.0.10: Please update to minimatch 3.0.2 or higher to avoid a RegExp DoS issue

Might be worth updating wd dependency to 1.0?
@MattiSG
Copy link
Owner

MattiSG commented Oct 21, 2016

Thanks for reporting @davidbgk!

This is a known issue. It is not —at least in my understanding— a real security threat since Watai does not expose any web service.

This update depends on #155, which depended on admc/wd#413 for a long time. It'll indeed be fixed when Watai updates to wd@1.

@davidbgk
Copy link
Author

davidbgk commented Nov 1, 2016

Alright, let's close it in that case.

@davidbgk davidbgk closed this as completed Nov 1, 2016
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@davidbgk @MattiSG