You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm using this package (which is great, by the way – thank you!) and I've noticed a critical alert in my repo titled "OS Command Injection":
gulp-scss-lint through 1.0.0 allows execution of arbitrary commands. It is possible to inject arbitrary commands to the "exec" function located in "src/command.js" via the provided options.
Is there a plan in place to fix this problem in a future release?
The text was updated successfully, but these errors were encountered:
I'm using this package (which is great, by the way – thank you!) and I've noticed a critical alert in my repo titled "OS Command Injection":
Is there a plan in place to fix this problem in a future release?
The text was updated successfully, but these errors were encountered: