Description
aegir is a module to help automate JavaScript project management. Version 12.0.0 through and including 12.0.7 bundled and published to npm the user (that performed a aegir-release) GitHub token.
Remediation
References
https://nodesecurity.io/advisories/546
Related Vulnerabilities
CVE-2017-16187 Vulnerability in npm package open-device
CVE-2019-19771 Vulnerability in npm package bictoinjs-lib
CVE-2021-22096 Vulnerability in maven package org.springframework:spring-core
CVE-2019-16728 Vulnerability in maven package org.webjars.bowergithub.cure53:dompurify
CVE-2018-1337 Vulnerability in maven package org.apache.directory.api:api-ldap-client-api