are@1.0.0 vulnerabilities

Library for defining and working with abstract regular expressions that work with any symbol type.

Direct Vulnerabilities

Known vulnerabilities in the are package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • C
Malicious Package

are is a malicious package. This package uses "typosquatting" to bait unknowing users to install them, this package could be abused to become an entry point for more sophisticated threats, enabling the attacker to execute remote code on the target machine, amass system information, plunder credit card information, and passwords auto-saved in Chrome and Edge browsers, and even steal Discord authentication tokens to impersonate the victim.

How to fix Malicious Package?

Avoid using all malicious instances of the are package.

[0,)