egoist/tsup
Releases207
Frequency1 week 2 days
Last Release
Stars11.3K
The simplest and fastest way to bundle your TypeScript libraries.
CVE History
| CVE | Affected | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|---|
| = 8.3.4 | 5.1 MEDIUM | — | ||
A DOM Clobbering vulnerability in tsup v8.3.4 allows attackers to execute arbitrary code via a crafted script in the import.meta.url to document.currentScript in cjs_shims.js components | ||||