uuid and node-uuid have flaws which lead to the use of an insecure entropy source “Math.random()” to generate pseudorandom numbers instead of using a secure Cryptographic API.
www.openwall.com/lists/oss-security/2016/04/13/8
access.redhat.com/errata/RHBA-2016:1343
access.redhat.com/security/cve/CVE-2015-8851
bugzilla.redhat.com/show_bug.cgi?id=1305131
bugzilla.redhat.com/show_bug.cgi?id=1316275
bugzilla.redhat.com/show_bug.cgi?id=1320233
bugzilla.redhat.com/show_bug.cgi?id=1322271
bugzilla.redhat.com/show_bug.cgi?id=1324179
bugzilla.redhat.com/show_bug.cgi?id=1326523
bugzilla.redhat.com/show_bug.cgi?id=1327056
bugzilla.redhat.com/show_bug.cgi?id=1327500
bugzilla.redhat.com/show_bug.cgi?id=1331816
bugzilla.redhat.com/show_bug.cgi?id=1333003
bugzilla.redhat.com/show_bug.cgi?id=1333118
bugzilla.redhat.com/show_bug.cgi?id=1333122
bugzilla.redhat.com/show_bug.cgi?id=1333158
bugzilla.redhat.com/show_bug.cgi?id=1333163
bugzilla.redhat.com/show_bug.cgi?id=1333172
bugzilla.redhat.com/show_bug.cgi?id=1333590
bugzilla.redhat.com/show_bug.cgi?id=1333898
bugzilla.redhat.com/show_bug.cgi?id=1333932
bugzilla.redhat.com/show_bug.cgi?id=1334249
bugzilla.redhat.com/show_bug.cgi?id=1334485
bugzilla.redhat.com/show_bug.cgi?id=1334501
bugzilla.redhat.com/show_bug.cgi?id=1334866
bugzilla.redhat.com/show_bug.cgi?id=1335290
bugzilla.redhat.com/show_bug.cgi?id=1336526
bugzilla.redhat.com/show_bug.cgi?id=1339174
bugzilla.redhat.com/show_bug.cgi?id=1340324
github.com/broofa/node-uuid/commit/672f3834ed02c798aa021c618d0a5666c8da000d
nodesecurity.io/advisories/93