A command injection vulnerability affects all versions of package deferred-exec. The injection point is located in line 42 in lib/deferred-exec.js
{ "nvd_published_at": "2022-07-25T14:15:00Z", "github_reviewed_at": "2022-08-06T05:19:00Z", "github_reviewed": true, "cwe_ids": [ "CWE-77" ], "severity": "CRITICAL" }