VYPR

npm package

@octokit/endpoint

pkg:npm/%40octokit/endpoint

Vulnerabilities (1)

  • CVE-2025-25285MedFeb 14, 2025
    affected >= 9.0.5, < 9.0.6fixed 9.0.6

    @octokit/endpoint turns REST API endpoints into generic request options. Starting in version 4.1.0 and prior to version 10.1.3, by crafting specific `options` parameters, the `endpoint.parse(options)` call can be triggered, leading to a regular expression denial-of-service (ReDoS