Important severity7.1OSV Advisory· Published Jul 6, 2026
pnpm: pnpm: patch-remove could delete project-selected files outside the patches directory
CVE-2026-59194
Description
pnpm: pnpm: patch-remove could delete project-selected files outside the patches directory
Affected products
2Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.