To report a security vulnerability, please use the Tidelift security contact. Tidelift will coordinate the fix and disclosure.
Security: nodeca/js-yaml
Security
SECURITY.md
-
Prototype pollution in merge (<<)GHSA-mh29-5h37-fv8m published
Nov 12, 2025 by puzrinModerate
Learn more about advisories related to nodeca/js-yaml in the GitHub Advisory Database