shortid references to nanoid of ^2.1.0 version which contains vulnerability
VladimirTrunov opened this issue · comments
Vladimir Trunov commented
Hello everyone,
This library references to nanoid of ^2.1.0 version which contains vulnerability. Could anybody please take a look?
Thanks,
-Vladimir
Andrey Sitnik commented
The package nanoid from 3.0.0 and before 3.1.31 are vulnerable
Nano ID 2.1 is not affected.
Vladimir Trunov commented
Oh, yes, I'm sorry