Control: tags -1 + confirmed On Tue, 2020-09-01 at 13:01 +0200, Xavier Guimard wrote: > Insufficient validation and sanitization of user input exists in url- > parse npm package version 1.4.4 and earlier may allow attacker to > bypass security checks. > Please go ahead. Regards, Adam