sencisho is vulnerable to directory traversal attacks. A malicious user can prepend /..%2f..%2f
in a directory string to disclose the files in a target directory.
github.com/JacksonGL
github.com/JacksonGL/NPM-Vuln-PoC/tree/master/directory-traversal/sencisho
github.com/julien/sencisho/commit/4254c85823fd0bbb0e8a53dc5a8e4f126639893d
github.com/julien/sencisho/compare/deda6fea60033a42fe4aa0342b0fdd8bc5692a24...3cb7fbb942a6adb7cb3cb01641bab305114f2d5c
nodesecurity.io/advisories/340