path-to-regexp <0.1.10 high severity vulnerability

- Laravel Mix Version: 6.0.49 (latest version)

### Description:

Laravel Mix Version 6.0.49 uses Express version 4.17.1 which uses path-to-regexp version 0.1.7. This has a high-severity vulnerability. See [https://github.com/advisories/GHSA-9wv6-86v2-598j](https://github.com/advisories/GHSA-9wv6-86v2-598j)

### Steps To Reproduce:
npm audit

### Recommended Fix

Update the Express dependency to the latest version when they make the next release. They have just fixed this in the past 50 minutes so I don't think there is a release out for it currently.

[https://github.com/expressjs/express/releases](https://github.com/expressjs/express/releases)
Their fix: [https://github.com/expressjs/express/pull/5902](https://github.com/expressjs/express/pull/5902)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

path-to-regexp <0.1.10 high severity vulnerability #3393

Description:

Steps To Reproduce:

Recommended Fix

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

path-to-regexp <0.1.10 high severity vulnerability #3393

Description

Description:

Steps To Reproduce:

Recommended Fix

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions