Dinesh Bolkensteyn

The problem is quite subtle: When I slowly interact with the page, everything works., both tooltips show up at the same location and the one with higher zIndex wins. However...

Ah I just realized that there is also a Javascript error appearing: 

Hi @kishorenc, this is a single standalone server, so the logs above are already complete To be noted that this is running on GCP with an incredibly slow filesystem

@thockin Looks like this issue can be closed

Agreed that's a very useful feature to have. I've just tried out your fork @issamemari , and it was unfortunately on my test data it was 10x slower than this...

@mikaelstaer Just to be clear, this is a security issue leading to a Remote Code Execution vulnerability. A CVE has been published a few days ago: https://nvd.nist.gov/vuln/detail/CVE-2021-43479

LGTM @benzonico

@Y4tacker The link referenced in the CVE, https://github.com/Y4tacker/Web-Security/issues/3, is not public. Can you update the CVE to point to a valid link?

This change might be incorrect, the examples on how to use embed all show `//go:embed` over `// go:embed`: https://pkg.go.dev/embed `license.ReadLicenseDir()` is returning an empty list for me: perhaps adding that...

There is no `*.db` file in this folder: https://github.com/google/licenseclassifier/tree/main/licenses So the error message was correct, and the right fix is more to remove `*.db` as an embedding rather than disabling...