Got this warning today when installing dependencies for my Next.js project. Thought of sharing it here:
Copy code
# npm audit report
cookie <0.7.0
cookie accepts cookie name, path, and domain with out of bounds characters - https://github.com/advisories/GHSA-pxg6-pf52-xh8x
No fix available
node_modules/supertokens-node/node_modules/cookie
supertokens-node *
Depends on vulnerable versions of cookie
node_modules/supertokens-node
2 low severity vulnerabilities
Some issues need review, and may require choosing
a different dependency.
SuperTokens is an open source authentication solution offering features like: Different types of login: Email / password, Passwordless (OTP or Magic link based).
