braces@0.1.0 vulnerabilities
Bash-like brace expansion, implemented in JavaScript. Safer than other brace expansion libs, with complete support for the Bash 4.3 braces specification, without sacrificing speed.
latest version
3.0.3
latest non vulnerable version
first published
10 years ago
latest version published
9 months ago
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the braces package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
braces is a Bash-like brace expansion, implemented in JavaScript. Affected versions of this package are vulnerable to Uncontrolled resource consumption due improper limitation of the number of characters it can handle, through the How to fix Uncontrolled resource consumption? Upgrade | <3.0.3 |
braces is a Bash-like brace expansion, implemented in JavaScript. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS). It used a regular expression ( How to fix Regular Expression Denial of Service (ReDoS)? Upgrade | <2.3.1 |