Releases207
Frequency1 week 2 days
Last Release
Stars11.3K
The simplest and fastest way to bundle your TypeScript libraries.

CVE History

CVEAffectedPublishedCVSS v3CVSS v2
= 8.3.45.1 MEDIUM

A DOM Clobbering vulnerability in tsup v8.3.4 allows attackers to execute arbitrary code via a crafted script in the import.meta.url to document.currentScript in cjs_shims.js components