VYPR

npm package

pkg

pkg:npm/pkg

Vulnerabilities (1)

  • CVE-2024-24828Feb 9, 2024
    affected <= 5.8.1

    pkg is tool design to bundle Node.js projects into an executables. Any native code packages built by `pkg` are written to a hardcoded directory. On unix systems, this is `/tmp/pkg/*` which is a shared directory for all users on the same local system. There is no uniqueness to the