CVE-2020-8178

CVE-2020-8178

Insufficient input validation in npm package `jison` <= 0.4.18 may lead to OS command injection attacks.