[Security]: Denial of service in http-proxy-middleware

[onissen]

Link zum Dependbot Alert

https://github.com/ncs-northware/northware/security/dependabot/5

Schweregrad

High

Betroffenes Package

@eslint-community/[email protected]

northware@ 
└─┬ @eslint-community/[email protected] extraneous -> .\node_modules\.pnpm\@[email protected][email protected][email protected]_\node_modules\@eslint-community\eslint-utils
  └─┬ [email protected] invalid: "^8.28.0" from node_modules/.pnpm/@[email protected][email protected][email protected]_/node_modules/@eslint-community/eslint-utils -> .\node_modules\.pnpm\e[email protected][email protected]\node_modules\eslint
    └─┬ [email protected] invalid: "^1.15.0" from node_modules/.pnpm/[email protected]/node_modules/source-map-support, "^4.31.0" from node_modules/.pnpm/[email protected]/node_modules/rxjs, "~1.14.0" from node_modules/.pnpm/[email protected]/node_modules/esprima -> .\node_modules\.pnpm\w[email protected]\node_modules\webpack
      └─┬ [email protected] -> .\node_modules\.pnpm\m[email protected][email protected]\node_modules\mini-css-extract-plugin
        └─┬ [email protected] -> .\node_modules\.pnpm\w[email protected][email protected]\node_modules\webpack-dev-server
          └── [email protected] -> .\node_modules\.pnpm\h[email protected]_@[email protected]\node_modules\http-proxy-middleware

Beschreibung

Das Package wird von einer ESLint dependency verwendet. Vielleicht erledigt sich das Problem von selbst, wenn klar ist, was mit @northware/eslint-config passieren soll (#144)