@mathharo/promptcraft-sanitize@0.1.0 vulnerabilities

Sanitizer fix for overlapping multi-token patterns.

latest version

0.1.0

first published

10 days ago

latest version published

10 days ago

licenses detected

MIT
>=0

View promptcraft-sanitize package health on Snyk Advisor (opens in a new tab)

Go back to all versions of this package

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the @mathharo/promptcraft-sanitize package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Permissive Regular Expression @mathharo/promptcraft-sanitize is a Sanitizer fix for overlapping multi-token patterns. Affected versions of this package are vulnerable to Permissive Regular Expression due to insufficient replacement of multi-character tokens. An attacker can execute arbitrary scripts in the context of the application by crafting input that exploits overlapping patterns in the input sanitization logic. How to fix Permissive Regular Expression? There is no fixed version for `@mathharo/promptcraft-sanitize`.	>=0.1.0

Permissive Regular Expression

@mathharo/promptcraft-sanitize is a Sanitizer fix for overlapping multi-token patterns.

Affected versions of this package are vulnerable to Permissive Regular Expression due to insufficient replacement of multi-character tokens. An attacker can execute arbitrary scripts in the context of the application by crafting input that exploits overlapping patterns in the input sanitization logic.

How to fix Permissive Regular Expression?

There is no fixed version for @mathharo/promptcraft-sanitize.

>=0.1.0

Go back to all versions of this package