wow, shocking that there's a security vulnerability in yet another node.js project. who could have predicted that? https://www.reddit.com/user/SadCryptographer4422