| Version | Supported |
|---|---|
| ^3.0.1 | ✅ |
| <3.0.1 | ❌ |
To report a security vulnerability, please use the Tidelift security contact. Tidelift will coordinate the fix and disclosure.
Security: pugjs/pug
Security
SECURITY.md
-
Remote code execution via the `pretty` option.GHSA-p493-635q-r6gr published
Feb 28, 2021 by ForbesLindesayHigh
Learn more about advisories related to pugjs/pug in the GitHub Advisory Database