Insecure Default Initialization of Resource
The NPM module fastify-swagger-ui is a Fastify plugin for serving Swagger UI. In versions prior to 2.1.0, the default configuration of `@fastify/swagger-ui` without the `baseDir` set will lead to all files in the module's directory being exposed via http routes served by the module. Setting the `baseDir` option can also work around this vulnerability.
CWE-1188 - Insecure Default Initialization of Resource
The software initializes or sets a resource with a default that is intended to be changed by the administrator, but the default is not secure.