semver version updateΒ #16
Description
Hello Konstantin,
you have specify in your package.json
"dependencies": {
"semver": "~5.3.0"
},
please could you change to
"dependencies": {
"semver": "~7.6.2"
},
because semver <5.7.2 has vulnerability
semver <5.7.2
Severity: moderate
semver vulnerable to Regular Expression Denial of Service - GHSA-c2qf-rxjj-qqgw
Thank you