GHSA-cff4-rrq6-h78w: Command Injection in command-exists

Severity: Critical

CVSS Score: 10

Versions of `command-exists` before 1.2.4 are vulnerable to command injection. This is exploitable if user input is provided to this module. ## Recommendation Update to version 1.2.4 or later.