Joe Portner

**Name of the Vulnerable Software and Affected Versions** css-what versions prior to 2.1.3 **Description** The issue is related to a Regular Expression Denial of Service (ReDoS) due to the usage of an insecure regular expression in the `re attr` variable of index.js. This could be triggered via the parse function. **Recommendations** For versions prior to 2.1.3, update to version 2.1.3 or later to resolve the issue. As a temporary workaround, consider restricting the use of the `parse` function until a patch is available. Avoid using the `re attr` variable in the affected index.js file until the issue is resolved.