ChALkeR/notes

Releases0

Stars1.27K

Some public notes

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2019-5448 ↗	Jul 30, 2019Tuesday, 30 July 2019, 21:15	8.1 HIGH	4.3 MEDIUM
Yarn before 1.17.3 is vulnerable to Missing Encryption of Sensitive Data due to HTTP URLs in lockfile causing unencrypted authentication data to be sent over the network.