CVE-2026-42089 - yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation
CVE ID :CVE-2026-42089 Published : June 16, 2026, 5:16 p.m. | 1 hour, 52 minutes ago Description :Yeoman Environment provides an API to discover, create, and run generators, and to configure where and how a generator is resolved. Versions 2.9.0 through 6.0.0 install missing local generator...