secure-compare@0.9.0 vulnerabilities
Securely compare two strings, copied from cryptiles
-
latest version
3.0.1
-
latest non vulnerable version
-
first published
9 years ago
-
latest version published
9 years ago
-
licenses detected
- >=0
Direct Vulnerabilities
Known vulnerabilities in the secure-compare package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
secure-compare is a node implementation of constant-time comparison algorithm to prevent timing attacks for Node.js. In versions prior to 3.0.1, the How to fix Insecure Comparison? Upgrade to version 3.0.1 or greater. When direct dependency update is not possible, use |
<3.0.1
|
secure-compare is a node implementation of constant-time comparison algorithm to prevent timing attacks for Node.js. In versions prior to 3.0.1, the How to fix Insecure Comparison? Upgrade to version 3.0.1 or greater. When direct dependency update is not possible, use |
<3.0.1
|