-
Notifications
You must be signed in to change notification settings - Fork 5.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Inefficient Regular Expression Complexity in chalk/ansi-regex #10182
Comments
@ThomasLarge You've checked that you're using the latest version, while Environment information you've pasted shows otherwise |
@medikoo sorry about that I have updated the above and here is the config, I copied the wrong one!
|
@ThomasLarge thanks for report. As I investigated,
|
@medikoo Shall we expect the security warning to go away only after v3 launch and users' migration? i.e. No back port in v2? |
Yes, it should be fixed in v3, which will have dropped |
@d-fay I've outlined problematic parts in above comment, and yes it still have not been addressed. We'll do our best to clear it before v3.0.0 release |
Closing as v3 pre-release (which can be installed via Public v3.0.0 release will be issued by end of this month |
Are you certain it's a bug?
Is the issue caused by a plugin?
Are you using the latest version?
Is there an existing issue for this?
Issue description
The latest version of the package has the following vulnerability
ansi-regex
patched in
5.0.1
and6.0.1
GHSA-93q8-gq69-wqmw
Service configuration (serverless.yml) content
N/A
Command name and used flags
N/A
Command output
Environment information
Serverless: Running "serverless" installed locally (in service node_modules) Framework Core: 2.64.1 (local) Plugin: 5.5.0 SDK: 4.3.0 Components: 3.17.1
The text was updated successfully, but these errors were encountered: