Security Advisory
CVE-2023-38695
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
cypress-image-snapshot shows visual regressions in Cypress with jest-image-snapshot. Prior to version 8.0.2, its possible for a user to pass a relative file path for the snapshot name and reach outside of the project directory into the machine running the test. This issue has been patched in version 8.0.2.