typed-function is a library used for type checking of JavaScript functions.
Affected versions of this package are vulnerable to Arbitrary Code Execution due to the creation of a typed function with JavaScript code in the _name variable.
Remediation
Upgrade typed-function to version 0.10.6 or higher.