validator is a library of string validators and sanitizers.
Affected versions of this package are vulnerable to Improper Validation of Specified Type of Input. The isURL() function in the validator module parses and validates protocols in URLs using the following method
Remediation
A fix was pushed into the master branch but not yet published.