snarkjs@0.3.13 vulnerabilities

zkSNARKs implementation in JavaScript

Known vulnerabilities in the snarkjs package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Vulnerability	Vulnerable Version
M Improper Input Validation snarkjs is a zkSNARKs implementation in JavaScript Affected versions of this package are vulnerable to Improper Input Validation that allows double spending because there is no validation that the `publicSignals` length is less than the field modulus. How to fix Improper Input Validation? Upgrade `snarkjs` to version 0.7.0 or higher.	<0.7.0