brick-node (>=0.0.0 <=0.0.17), change-object (=0.0.0) +9 more potentially affected by unknown CVE via flat-glob (=0.0.1)

flat-glob NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on flat-glob and may be impacted: - brick-node =0.0.0, =1.16.0, =0.0.0, =1.0.1, =1.0.2 Source cves: unknown CVE Source advisory: OSV:MAL-2025-20688...

MAL-2025-20688 Malicious code in flat-glob (npm)

The package flat-glob was found to contain malicious code...

Malicious code in flat-glob (npm)

The package flat-glob was found to contain malicious code...