nope-env (=1.0.0) potentially affected by CVE-2020-26309 via nope-validator (=0.11.3)

nope-validator NPM version =0.11.3 is affected by a known vulnerability. The following packages have a transitive dependency on nope-validator and may be impacted: - nope-env =1.0.0 Source cves: CVE-2020-26309 Source advisory: OSV:GHSA-3PHV-83CJ-P8P7...

PT-2024-10799 · Unknown +1 · Validate.Js +1

Name of the Vulnerable Software and Affected Versions: Validate.js versions 0.11.3 and prior Nope versions 0.11.3 and prior Description: The issue concerns Regular Expression Denial of Service ReDoS due to one or more vulnerable regular expressions. Recommendations: For Validate.js versions 0.11....