glob-parent
before 5.1.2 has a regular expression denial of service vulnerability. The enclosure regex used to check for strings ending in enclosure containing path separator.
Upgrade to version 5.1.2 or later
CPE | Name | Operator | Version |
---|---|---|---|
glob-parent | lt | 5.1.2 |