semver-tags
v0.4.10npm· JavaScriptGet semver tags for a repo (git or svn)
The verdict
Has 1 high-severity advisory. Verify a patched version exists before using. Check the OSV link for the fixed-in version.
Check the OSV link for the fixed-in version.
Live from the npm registry · derived rules, not AI
How it scores
MaintenanceAbandoned
PopularityNiche
Security1 advisory
LicenseUnknown
DepsModerate
Maintenance
Last published 6 years ago.
Popularity
13 downloads / week
Security
1 known advisory (worst: high severity).
License
No license declared.
Dependencies
5 direct dependencies
Security advisories
Live from OSV.dev · cached 24h- HIGHsemver-tags is vulnerable to Command Injection via the getGitTagsRemote functionGHSA-8h3g-hcwp-6hxq Published 2023-02-06
Recent releases
- 0.4.106 years ago
- 0.4.98 years ago
- 0.4.88 years ago
- 0.4.79 years ago
- 0.4.610 years ago
- 0.4.510 years ago
- 0.4.410 years ago
- 0.4.211 years ago