CVE-2020-24025
npm/node-sass
Improper Certificate Validation
Certificate validation in node-sass is disabled when requesting binaries even if the user is not specifying an alternative download path.
All versions starting from 2.0.0 up to 4.14.1
Upgrade to version 5.0.0 or above.
2021-01-18
source |