stylelint@6.9.0 vulnerabilities

A mighty CSS linter that helps you avoid errors and enforce conventions.

Direct Vulnerabilities

Known vulnerabilities in the stylelint package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Regular Expression Denial of Service (ReDoS)

stylelint is a linter that helps you avoid errors and enforce conventions in your styles.

Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS). The foundIndents regex was found to allow exponential backtracking.

How to fix Regular Expression Denial of Service (ReDoS)?

Upgrade stylelint to version 14.0.0 or higher.

<14.0.0
  • M
Regular Expression Denial of Service (ReDoS)

stylelint is a linter that helps you avoid errors and enforce conventions in your styles.

Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS).

How to fix Regular Expression Denial of Service (ReDoS)?

Upgrade stylelint to version 11.0.0 or higher.

<11.0.0