CVE-2022-21195: Regular expression denial of service in url_regex
(updated )
All versions of package url-regex is vulnerable to Regular Expression Denial of Service (ReDoS) which can cause the CPU usage to crash.
References
Detect and mitigate CVE-2022-21195 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →