There are 2 open security issues in buster.
2 issues left for the package maintainer to handle:
The Library API in buger jsonparser through 2019-12-04 allows attackers to cause a denial of service (infinite loop) via a Delete call.
jsonparser 1.0.0 allows attackers to cause a denial of service (panic: runtime error: slice bounds out of range) via a GET call.
You can find information about how to handle these issues in the security team's documentation.