styled-components@5.3.5 vulnerabilities

latest version

6.1.8
latest non vulnerable version

6.1.8
first published

8 years ago
latest version published

4 months ago
licenses detected
- MIT
  >=0
View styled-components package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the styled-components package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
M Undesired Behavior Affected versions of this package are vulnerable to Undesired Behavior via the `postinstall.js` file which looks for users using a `ru` time-zone to show a political protest message using the `console.warn()` function. Also, the absence of this file in the 5.3.4 version causes a crash when the package is installed. How to fix Undesired Behavior? Upgrade `styled-components` to version 5.3.7 or higher.	>=5.3.5 <5.3.7

Undesired Behavior

Affected versions of this package are vulnerable to Undesired Behavior via the postinstall.js file which looks for users using a ru time-zone to show a political protest message using the console.warn() function. Also, the absence of this file in the 5.3.4 version causes a crash when the package is installed.

How to fix Undesired Behavior?

Upgrade styled-components to version 5.3.7 or higher.

>=5.3.5 <5.3.7

Go back to all versions of this package

styled-components@5.3.5 vulnerabilities

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities