stylelint@4.3.2 vulnerabilities

A mighty CSS linter that helps you avoid errors and enforce conventions.

  • latest version

    16.12.0

  • latest non vulnerable version

  • first published

    10 years ago

  • latest version published

    3 hours ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the stylelint package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Regular Expression Denial of Service (ReDoS)

    stylelint is a linter that helps you avoid errors and enforce conventions in your styles.

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS). The foundIndents regex was found to allow exponential backtracking.

    How to fix Regular Expression Denial of Service (ReDoS)?

    Upgrade stylelint to version 14.0.0 or higher.

    <14.0.0
    • M
    Regular Expression Denial of Service (ReDoS)

    stylelint is a linter that helps you avoid errors and enforce conventions in your styles.

    Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS).

    How to fix Regular Expression Denial of Service (ReDoS)?

    Upgrade stylelint to version 11.0.0 or higher.

    <11.0.0