Dependency on vulnerable version of fast-xml-parser #188
Description
openapi-sampler depends on a vulnerable version of fast-xml-parser
In versions 4.3.6 through 5.3.3, a RangeError vulnerability exists in the numeric entity processing of fast-xml-parser when parsing XML with out-of-range entity code points (e.g., � or �). This causes the parser to throw an uncaught exception, crashing any application that processes untrusted XML input. Version 5.3.4 fixes the issue.
This means that when your project depends on Redocly, Dependabot (and other tools) will create alerts for your repository.