VYPR

npm package

@octokit/request-error

pkg:npm/%40octokit/request-error

Vulnerabilities (1)

  • CVE-2025-25289MedFeb 14, 2025
    affected >= 1.0.0, < 5.1.1fixed 5.1.1

    @octokit/request-error is an error class for Octokit request errors. Starting in version 1.0.0 and prior to version 6.1.7, a Regular Expression Denial of Service (ReDoS) vulnerability exists in the processing of HTTP request headers. By sending an authorization header containing