Skip to content
Compare
Choose a tag to compare

v1.8.8

@sheerun sheerun released this
· 80 commits to master since this release
Compare
Choose a tag to compare

Fix security issue connected to extracting .tar.gz archives

This bug allows to write arbitrary file on filesystem when Bower extracts malicious package

Needlessly to say, please upgrade