npm
@node-oauth/oauth2-server
1 known vulnerability · 0 critical · 0 high
GHSA-jhm7-29pj-4xvf
@node-oauth/oauth2-server: PKCE code_verifier ABNF not enforced in token exchange allows brute-force redemption of intercepted authorization codes
Published Apr 16, 2026
Check your entire dependency tree at onceRun dependency scan →