GHSA-chj3-f7xw-367m, CVE-2022-24376
npm/git-promise
OS Command Injection in git-promise
All versions of package git-promise is vulnerable to Command Injection due to an inappropriate fix of a prior vulnerability in this package.
All versions up to 1.0.0
Unfortunately, there is no solution available yet.
2022-06-17
source |