yeoman-environment (npm) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package yeoman-environment, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (1)
CVE-2026-42089 — CVSS 8.6 (high): Yeoman Environment provides an API to discover, create, and run generators, and to configure where and how a generator is resolved…