Regarding email@example.com Vulnerability
I am using latest version of Swaggerfirstname.lastname@example.org and its having a vulnerability in one of its dependency - email@example.com
Details of the vulnerability -
validator @ 10.11.0 - Status: fixed in 13.6.0
validator package versions before 13.6.0 are vulnerable to ReDOS (Regular Expression Denial of Service) via isEmail and isHSL. The vulnerability can happen when checking if the crafted string is an email.
Can we please have this vulnerability addressed and released with a new Swagger tools version.
Solved! Go to Solution.
swagger-tools is not a SmartBear library, it's a third-party community project. Its GitHub repository is here:
I suggest asking this question in the project's issue tracker.
SmartBear Documentation Team Lead
Did my reply answer your question? Give Kudos or Accept it as a Solution to help others. ⬇️⬇️⬇️