Answer the question
In order to leave comments, you need to log in
How to fix a bug in GitHub related to module problems?
How can I fix if I don't have such a Minimatch dependency in my package.json ?
CVE-2016-10540 More information
high severity
Vulnerable versions: < 3.0.2
Patched version: 3.0.2
Minimatch is a minimal matching utility that works by converting glob expressions into JavaScript RegExp objects. The primary function, minimatch(path, pattern) in Minimatch 3.0.1 and earlier is vulnerable to ReDoS in the pattern parameter.
Answer the question
In order to leave comments, you need to log in
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question