Intel

AIKIDO-2026-215291

tree-sitter-perl-next is vulnerable to Use of Unmaintained Third Party Components

Use of Unmaintained Third Party Components Pre-CVE
Found by Aikido Intel before public disclosure or CVE publication.
Published 3 days ago

50

Medium Risk

This Affects:

Are you affected? Scan for Free

TL;DR

The tree-sitter-perl-next package is no longer maintained.

Who does this affect?

You are affected if you are using this package.

Background info

tree-sitter-perl-next is vulnerable to Use of Unmaintained Third Party Components in all versions.

How to fix this

Remove any tree-sitter-perl-next package from your application. Please take a look at ts-parser-perl as an alternative.