Comments (3)
@mrmlnc looks great! Please send a PR. I will release a minor version with that change and then we can drop the hack all together in a major.
from glob-parent.
This is definitely something we can look into. How would you feel about adding an options object and an option to disable that? I'm thinking the option makes sense so we can have backwards compatibility but maybe it's time to drop the replacement hack. I'm not sure.
from glob-parent.
IMHO, I would prefer to remove this hack (glob patterns by design works only with forward slashes). However, this is a major change for gulp users.
I can create a PR with with these changes (without major changes):
from glob-parent.
Related Issues (20)
- SNYK ReDoS vulnerability HOT 3
- Regex denial of service vulnerability in glop-parent (SNYK-JS-GLOBPARENT-1016905)
- security risk HOT 3
- I think the regexps are busted HOT 16
- snyk report Vulnerable module
- Security vulnerability(Denial of Service) in all released versions HOT 1
- Snyk Reporting Medium Severity Vulnerability
- Question mark character not treated as special in path segment HOT 23
- Snyk vulnerability identified HOT 1
- With this change, at least locally for me:
- [Already solved] Possible Regular expresion denial of service vulnerability. HOT 1
- <spam> The library is old so I want you to update it.
- Release glob-parent 5.2.0 HOT 1
- Security vulnerability report HOT 1
- npm audit - Vulnerabilities Observed in dependent package HOT 1
- Our enclosure logic doesn't account for escaped brackets.
- npm audit - Vulnerabilities Observed in dependent package
- glob-parent v5.1.2 has vulnerability CVE-2021-35065 HOT 4
- globParent("?/a") returns "?" instead of "."
- Incorrect identification of the static part of the pattern for the disk root on Windows HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from glob-parent.