VYPR

npm package

google-closure-tools-latest

pkg:npm/google-closure-tools-latest

Vulnerabilities (1)

  • CVE-2016-10677HigJun 4, 2018
    affected <= 0.1.1

    google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (