git-promise@0.3.1 vulnerabilities
Simple wrapper to run any git command and process it's output using promises.
-
latest version
1.0.0
-
first published
10 years ago
-
latest version published
5 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the git-promise package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
git-promise is a Simple wrapper that allows you to run any git command using a more intuitive syntax. Affected versions of this package are vulnerable to Command Injection due to an inappropriate fix of a prior vulnerability in this package. Note: Please note that the vulnerability will not be fixed. The README file was updated with a warning regarding this issue. How to fix Command Injection? There is no fixed version for |
*
|
git-promise is a Simple wrapper that allows you to run any git command using a more intuitive syntax. Affected versions of this package are vulnerable to Remote Code Execution (RCE). The issue occurs because a How to fix Remote Code Execution (RCE)? Upgrade |
<1.0.0
|