Stuck on an issue?
Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.
And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.
Security issue: please update Acorn
See original GitHub issue === npm audit security report ===
Manual Review
Some vulnerabilities require your attention to resolve
Visit https://go.npm.me/audit-guide for additional guidance
Moderate Regular Expression Denial of Service
Package acorn
Patched in >=7.1.1
Dependency of jest [dev]
Path jest > @jest/core > @jest/reporters > jest-runtime >
jest-config > jest-environment-jsdom > jsdom > acorn-globals
> acorn
More info https://npmjs.com/advisories/1488
Moderate Regular Expression Denial of Service
Package acorn
Patched in >=7.1.1
Dependency of jest [dev]
Path jest > jest-cli > @jest/core > @jest/reporters >
jest-runtime > jest-config > jest-environment-jsdom > jsdom
> acorn-globals > acorn
More info https://npmjs.com/advisories/1488
Moderate Regular Expression Denial of Service
Package acorn
Patched in >=7.1.1
Dependency of jest [dev]
Path jest > @jest/core > jest-runner > jest-jasmine2 >
jest-runtime > jest-config > jest-environment-jsdom > jsdom
> acorn-globals > acorn
More info https://npmjs.com/advisories/1488
Moderate Regular Expression Denial of Service
Package acorn
Patched in >=7.1.1
Dependency of jest [dev]
Path jest > jest-cli > @jest/core > jest-runner > jest-jasmine2 >
jest-runtime > jest-config > jest-environment-jsdom > jsdom
> acorn-globals > acorn
More info https://npmjs.com/advisories/1488
Moderate Regular Expression Denial of Service
Package acorn
Patched in >=7.1.1
Dependency of jest [dev]
Path jest > @jest/core > jest-runner > jest-runtime > jest-config
> jest-environment-jsdom > jsdom > acorn-globals > acorn
More info https://npmjs.com/advisories/1488
[...snip...]
Issue Analytics
- State:
- Created 4 years ago
- Reactions:55
- Comments:11
Top Results From Across the Web
Why am I unable to log in to my Acorns Account?
Please make sure you are using the email we have on file for your account to either login or assist you with updating...
Read more >Acorns down? Current problems and outages - Downdetector
Real-time problems and outages for Acorns. Log-in not working? Is the server down? Here you see what is going on.
Read more >טוויטר \ Acorns Support בטוויטר: "@JessinStateman We're currently ...
We're currently experiencing connectivity issues because of their recent security update. We apologize for any inconvenience! For now, you can make One-Time and ......
Read more >Apple's April Security update for 10.15.7 breaks Acorn version ...
The Apple security update has broken Acorn versions 6 and lower. Any files saved in these versions of Acorn will end up empty....
Read more >Acorn Financial Services Reports Data Breach Following ...
On August 9, 2022, Acorn Financial Services confirmed that the company experienced a data breach after an unauthorized party gained access ...
Read more >
Top Related Medium Post
No results found
Top Related StackOverflow Question
No results found
Troubleshoot Live Code
Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free
Top Related Reddit Thread
No results found
Top Related Hackernoon Post
No results found
Top Related Tweet
No results found
Top Related Dev.to Post
No results found
Top Related Hashnode Post
No results found
FWIW
acorn-globals@6.0.0is published.The fix was backported to acorn
6.4.1here. At the time of this writing, new installs should not have any reported vulns.If you have an existing install, make sure you are using the latest version of jest
25.1.0. You can runnpm audit fixor whatever the yarn equivalent is.I believe this issue should now be closed.