Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / TooTallNate/node-degenerator issues and pull requests

#26 - Update vm2 to >=3.9.17 due to CVE-2023-30547

Issue - State: closed - Opened by nephridium over 1 year ago - 1 comment

#25 - [Security]: update VM2 to 3.9.17

Pull Request - State: closed - Opened by zakuru over 1 year ago - 4 comments

#24 - updated vm2 to 3.9.16

Pull Request - State: closed - Opened by freeman-parks over 1 year ago - 1 comment

#23 - fix critical sev vm2 -> 3.9.16

Pull Request - State: closed - Opened by LukeMccon over 1 year ago - 3 comments

#22 - [Security] Bump vm2 to 3.9.15 (#15)

Pull Request - State: closed - Opened by basvandorst over 1 year ago - 1 comment

#21 - Update pm2 dependency due to CVE-2023-29017

Issue - State: closed - Opened by lorantalas over 1 year ago - 1 comment

#20 - fix(vm2): sandbox escape

Pull Request - State: closed - Opened by parfeon over 1 year ago - 1 comment

#19 - [security] bump vm2 to 3.9.15

Pull Request - State: closed - Opened by jeremypress over 1 year ago - 4 comments

#18 - Sandbox Bypass Affecting vm2 package, versions <3.9.11

Issue - State: closed - Opened by punithvenkataswamy about 2 years ago - 6 comments

#17 - [Security] Bump vm2 to 3.9.11

Pull Request - State: closed - Opened by whrazer about 2 years ago - 1 comment

#16 - Upgrade vm2 from `3.9.3` to `3.9.7`

Pull Request - State: closed - Opened by oguzhand95 over 2 years ago

#15 - Critical vulnerability in vm2 dependency

Issue - State: closed - Opened by toastyghost over 2 years ago - 2 comments

#14 - [security] CVE-2021-23449 - Bumped vm2 to 3.9.5

Pull Request - State: closed - Opened by crudo almost 3 years ago - 2 comments

#13 - Incompatible with Vercel/pkg and Auth0

Issue - State: closed - Opened by CyberSecDemon about 3 years ago

#12 - Remove "generator" output mode

Pull Request - State: closed - Opened by TooTallNate over 3 years ago

#11 - Use `vm2` module to prevent privilege escalation of untrusted code

Pull Request - State: closed - Opened by TooTallNate over 3 years ago

#10 - turning function into generators only if function uses one of 'names'

Pull Request - State: closed - Opened by idobh2 over 6 years ago - 1 comment

#9 - 0.x.x dependency on ast-types pulls in breaking changes

Issue - State: closed - Opened by chrisakers over 6 years ago - 2 comments

#8 - update to use newer ast-types

Pull Request - State: closed - Opened by piotr1212 about 9 years ago - 1 comment

#7 - Priority Critical - Esprima Harmony has been moved.

Issue - State: closed - Opened by nijikokun over 9 years ago - 2 comments

#6 - Update package.json

Pull Request - State: closed - Opened by tgriesser over 9 years ago - 7 comments

#4 - update dependency

Pull Request - State: closed - Opened by ecwyne over 9 years ago - 1 comment

#3 - ariya/esprima moved to jquery/esprima

Issue - State: closed - Opened by fundon over 9 years ago

#2 - could we get version bump?

Issue - State: closed - Opened by MetaMemoryT over 9 years ago - 1 comment

#1 - Fix for blocked git protocol

Pull Request - State: closed - Opened by aarongundel over 9 years ago - 1 comment