VYPR

npm package

parse-duration

pkg:npm/parse-duration

Vulnerabilities (1)

  • CVE-2025-25283HigFeb 12, 2025
    affected < 2.1.3fixed 2.1.3

    parse-duraton is software that allows users to convert a human readable duration to milliseconds. Versions prior to 2.1.3 are vulnerable to an event loop delay due to the CPU-bound operation of resolving the provided string, from a 0.5ms and up to ~50ms per one operation, with a