taskgraph@0.5.2 vulnerabilities
Parallel task graph framework
latest version
0.11.1
latest non vulnerable version
first published
7 years ago
latest version published
1 years ago
licenses detected
- [0.1.0,0.11.1)
Direct Vulnerabilities
Known vulnerabilities in the taskgraph package. This does not include vulnerabilities belonging to this package’s dependencies.
How to fix?
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free| Vulnerability | Vulnerable Version |
|---|---|
taskgraph is a Parallel task graph framework Affected versions of this package are vulnerable to Race Condition during the closing or dismantling of a TaskGraph. This could lead to an open cache .json file, as evidenced by inconsistent build test results. How to fix Race Condition? Upgrade | [,0.6.0) |
taskgraph is a Parallel task graph framework Affected versions of this package are vulnerable to Race Condition when multiple threads tried to read or write to the completed Task Database at the same time. There is a potential for this to escalate into something like a Denial of Service (DoS) attack, although executing such an attack might not be straightforward. How to fix Race Condition? Upgrade | [,0.8.1) |
taskgraph is a Parallel task graph framework Affected versions of this package are vulnerable to Race Condition during its normal termination procedure. This poses a risk of freezing an object or causing a crash. How to fix Race Condition? Upgrade | [,0.10.0) |