Advisories for Npm/Brace-Expansion package

index.js in brace-expansion before 1.1.7 is vulnerable to Regular Expression Denial of Service (ReDoS) attacks, as demonstrated by an expand argument containing many comma characters.

brace expansion is vulnerable to Regular Expression Denial of Service attacks.