Improper Neutralization of Special Elements used in a Command ('Command Injection')
All versions of package git-archive is vulnerable to Command Injection via the exports function.
Advisories for Npm/Git-Archive package
2022
All versions of package git-archive is vulnerable to Command Injection via the exports function.