VYPR

npm package

sauce-connect

pkg:npm/sauce-connect

Vulnerabilities (1)

  • CVE-2016-10599HigJun 1, 2018
    affected <= 0.1.1

    sauce-connect is a Node.js wrapper over the SauceLabs SauceConnect.jar program for establishing a secure tunnel for intranet testing. sauce-connect downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution