Skip to content

[GHSA-23c5-xmqv-rm74] minimatch@3.1.2: ReDoS via nested extglobs #107

New issue
New issue
Open
Open
[GHSA-23c5-xmqv-rm74] minimatch@3.1.2: ReDoS via nested extglobs#107
Labels
securitySecurity-related issuesvulnerabilityDependency vulnerability
@nthmost-orkes

Description

@nthmost-orkes
nthmost-orkes
opened on Feb 27, 2026

Vulnerability Report

CVE Library Installed Fixed
GHSA-23c5-xmqv-rm74 minimatch 3.1.2 3.1.4
GHSA-3ppc-4f35-3m26 minimatch 3.1.2 3.1.3
GHSA-7r86-cg39-jmmj minimatch 3.1.2 3.1.3

Summary

Three ReDoS vulnerabilities in minimatch (transitive dependency).

References

Metadata

Metadata

Assignees

No one assigned

    Labels

    securitySecurity-related issuesvulnerabilityDependency vulnerability

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions