VulnerableCode Package Details - pkg:npm/schema-inspector@2.0.0

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:npm/schema-inspector@2.0.0

Essentials
History (2)

purl	pkg:npm/schema-inspector@2.0.0

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-bqhv-58xn-4ka4	Uncontrolled Resource Consumption Schema-Inspector is an open-source tool to sanitize and validate JS objects (npm package schema-inspector). In, email address validation is vulnerable to a denial-of-service attack where some input will freeze the program or web browser page executing the code. This affects any current schema-inspector users using any version to validate email addresses. Users who do not do email validation, and instead do other types of validation (like string min or max length, etc), are not affected. Users should upgrade to, which uses a regex expression that isn't vulnerable to ReDoS.	CVE-2021-21267 GHSA-f38p-c2gq-4pmr

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-04T17:32:33.782474+00:00	GithubOSV Importer	Fixing	VCID-bqhv-58xn-4ka4	https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/03/GHSA-f38p-c2gq-4pmr/GHSA-f38p-c2gq-4pmr.json	38.6.0
2026-06-04T16:20:54.231133+00:00	GitLab Importer	Fixing	VCID-bqhv-58xn-4ka4	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/npm/schema-inspector/CVE-2021-21267.yml	38.6.0