jamie-albert
jamie-albert
Attempting to get this package into the remote side CI pipeline to verify build
GHSA-8g2x-6frq-q83x HAProxy statistics in openstack-tripleo-image-elements is showing up on our scans, I can not find any information in the mailing lists, forums or this repo regarding this CVE. Is this...
An issue was discovered in litestream v0.3.13. The usage of the ssh.InsecureIgnoreHostKey() disables host key verification, possibly allowing attackers to obtain sensitive information via a man-in-the-middle attack. GHSA-qpgw-j75c-j585
Investigating if the following CVE: CVE-2015-3243 also published as GHSA-mg7r-rgfr-mmj9 has any intent of being remediated by the repository's maintainers.
Due to this project being gradle we are required to use patches here. The two patches are for separate components that both bring in the affected dependency, bringing them to...
## Summary Fixes GHSA-5j98-mcp5-4vw2 and GHSA-mh29-5h37-fv8m in renovate by adding pnpm overrides for glob and js-yaml. ## Changes - Incremented epoch to 1 - Added pnpm overrides to update: -...
## Summary Fixes GHSA-mh29-5h37-fv8m (CVE-2025-64718) by updating js-yaml from 4.1.0 to 4.1.1. ## Changes - Added [email protected] to existing npm overrides for security vulnerabilities - Incremented epoch from 1 to...