-
Snyk link:
https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN-8303230
Issue: [`cross-spawn` contains a Regular Expression Denial of Service (ReDoS)](https://security.snyk.io/vuln/SNYK-JS-CROSSSPAWN…
-
### What are you really trying to do?
Run temporalio docker images in an environment with SLA for patching security vulnerabilities
### Describe the bug
Running a vulnerability scanner against …
-
Per CVE-2022-0235, see:
https://github.com/advisories/GHSA-r683-j2x4-v87g
This is a request to patch the node-fetch module to at least version 2.6.7.
Both audit fix and audit fix --force don't se…
-
This can combine which operating systems ship these patches consistently (LineageOS and /e/OS don't ship them at all for many of the supported devices) and the delays for them. It's largely but not en…
-
This item includes topics of supply chain management based on the preliminary template https://ot.owasp.org/the-top-10/template/
That includes SLAs and patch management, which is typically not done…
-
Some time ago the [CVE-2022-23535](https://github.com/mbdavid/LiteDB/security/advisories/GHSA-3x49-g6rc-c284) vulnerability was fixed for the forth version of LiteDB. Accorting to the [comment](https:…
-
https://github.com/kafbat/kafka-ui/actions/runs/8491064444/job/23262694445
-
https://review.lineageos.org/c/LineageOS/android_build/+/296720/1/core/version_defaults.mk#132
https://www.lineageoslog.com/15.1
https://source.android.com/security/bulletin
Basically need to go …
-
This request is for specially for Azure managed services like AKS. Normally, when there is a vulnerability published for AKS or underlying Node Images or OS, we should have been informed such thing fr…
-
### Rollup Version
2.79.2
### Operating System (or Browser)
Any
### Node Version (if applicable)
NA
### Link To Reproduction
NA
### Expected Behaviour
I got a security issue reported by Snyk …