VYPR

Inert

by hapijs

Source repositories

CVEs (1)

  • CVE-2026-48049Jun 11, 2026
    risk 0.00cvss epss 0.00

    ### Impact `@hapi/inert` serves static files from a directory configured with `path` (in the `directory` / `file` handlers) or `relativeTo` (for `h.file()`), with confinement enforced by the `confine` option (default `true`). Before the patch, the confinement check compared the…