Find real vulnerabilities before they ship
Vulnerability Database › npm › CVE-2020-28443
This affects all versions of package sonar-wrapper. The injection point is located in lib/sonarRunner.js.
Base Score