![Disclosing code injection vulnerabilities in safe-eval-2 npm package](/_astro/safe-eval-2-cve-report.f1dab2bc_2eWyQk.webp)
Disclosing code injection vulnerabilities in safe-eval-2 npm package
A project fork is not without risks, and this time it's the safe-eval-2 npm package that is vulnerable to code injection attacks.
A project fork is not without risks, and this time it's the safe-eval-2 npm package that is vulnerable to code injection attacks.