In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Cryptographic Backdoor vulnerabilities in an interactive lesson.
Start learningUpgrade generate-password
to version 1.4.1 or higher.
generate-password is a relatively extensive library for generating random and unique passwords.
Affected versions of this package are vulnerable to Cryptographic Backdoor. It generates random values that are biased towards certain characters depending on the chosen character sets. This may result in guessable passwords.