Refine•3y ago

Vulnerability

Does anyone encounters this issues when using refine?

marked <=4.0.9
Severity: high
Inefficient Regular Expression Complexity in marked - https://github.com/advisories/GHSA-5v2h-r2cx-5xgj
Inefficient Regular Expression Complexity in marked - https://github.com/advisories/GHSA-rrrm-qjm4-v8hf
No fix available
node_modules/ink-markdown/node_modules/marked
ink-markdown *
Depends on vulnerable versions of marked
node_modules/ink-markdown
@refinedev/cli *
Depends on vulnerable versions of ink-markdown
node_modules/@refinedev/cli

GitHub

CVE-2022-21681 - GitHub Advisory Database

Inefficient Regular Expression Complexity in marked

GitHub

CVE-2022-21680 - GitHub Advisory Database

Inefficient Regular Expression Complexity in marked

kapa.ai•9/1/23, 8:58 AM

Hi @darkshade250. I'm kapa.ai, your friendly support bot. I will try to answer your question by searching through the knowledge base.

kapa.ai•9/1/23, 8:58 AM

----------------------
Hmm, I don't know enough to give you a confident answer yet. The information extracts provided do not contain any details about the specific issue you're encountering with the markedmarked package in the context of using refine.

For more detailed information and assistance, I recommend checking the official refine documentation (https://refine.dev/docs/) or reaching out to the refine community for support.
----------------------
Note: you can ask me a follow up question by @ mentioning me againNote: you can ask me a follow up question by @ mentioning me again

----------------------

kapa.ai•9/1/23, 8:58 AM

@457601200695803916 kapa.ai is still learning and improving, please let us know how it did by reacting below

brilliant-lime•9/1/23, 9:57 AM

Hello @darkshade250, we are using ink-markdown package to render markdown on CLI.
thanks for the issue. maybe we can look for the alternatives