sendgrid-python icon indicating copy to clipboard operation
sendgrid-python copied to clipboard

Published 20 hours ago verified publisher icon sendgrid

CVE for dependency ecdsa

Open trupus opened this issue 6 months ago • 1 comments

Hi,

I noticed you switched from starkbank-ecdsa to ecdsa. There are currently 2 vulnerabilities for ecdsa CVE-2024-23342, PVE-2024-64396.

For now I'm just ignoring them in my CI pipeline, but what would be a better solution going forward?

Thanks

trupus avatar May 28 '25 12:05 trupus