Version of is-my-json-valid
before 1.4.1 or 2.17.2 are vulnerable to regular expression denial of service (ReDoS) via the email validation function.
Update to version 1.4.1, 2.17.2 or later.
{ "github_reviewed_at": "2020-06-16T21:33:36Z", "cwe_ids": [ "CWE-1333" ], "nvd_published_at": null, "severity": "HIGH", "github_reviewed": true }