Closed
Description
The reason I am asking that question because of High severity vulnerabilities / serve-handler / path-to-regexp vercel/serve#811
serve-test@1.0.0
└─┬ serve@14.2.3
└─┬ serve-handler@6.1.5
└── path-to-regexp@2.2.1
This package is using path-to-regexp@2.2.1 and the recent commit for (Add backtrack protection to 3.x release) was done for 3.x release but I don't see any new package version for 2.x.
Metadata
Metadata
Assignees
Labels
No labels