Description
This affects all versions of package sonar-wrapper. The injection point is located in lib/sonarRunner.js.
Remediation
References
https://security.snyk.io/vuln/SNYK-JS-SONARWRAPPER-1050980
Related Vulnerabilities
CVE-2021-23430 Vulnerability in npm package startserver
CVE-2020-26302 Vulnerability in maven package org.webjars.bower:is_js
CVE-2022-2218 Vulnerability in npm package parse-url
CVE-2017-5858 Vulnerability in npm package converse.js
CVE-2016-10735 Vulnerability in maven package org.webjars.bower:bootstrap-sass