ChALkeR
2 exploits
Active since Jul 2019
yarn < 1.19.0 - TOCTOU Race Condition in Package Integrity Validation
CVSS 5.9
Yarn < 1.17.3 - Cleartext Transmission of Sensitive Information via HTTP URLs in Lockfile
CVSS 8.1