Apply Critical Security Fix for CVE-2024-29180 (srcANGULAR)

ChewKeanHo / AutomataCI

An open-source, redistributable, template-guided, and semi-autonomous CI infrastructure readily available your next project.

Apache License 2.0

18 stars 1 forks source link

Apply Critical Security Fix for CVE-2024-29180 (srcANGULAR) #264

Closed hollowaykeanho closed 3 months ago

hollowaykeanho commented 3 months ago

Description

GitHub Dependabot reported a critical security vulnerability discovered in srcANGULAR directory. While AutomataCI is not impacted directly, we're still distributing the sample so we have to roll out an emergency release.

Expected Behavior

CVE-2024-29180 security vulnerability fixed.

Current Behavior

CVE-2024-29180 is still there.

Steps to Reproduce [COMPULSORY]

Refer: https://github.com/ChewKeanHo/AutomataCI/security/dependabot/1

Associated Data Files

No response

hollowaykeanho commented 3 months ago

@corygalyna , FYI... emergency release.

hollowaykeanho commented 3 months ago

committed in 2566c59fa8ac70738b010ab6b4db4d1722350baa

corygalyna commented 3 months ago

Oh.. okay. Standing by.. please make it quick.

hollowaykeanho commented 3 months ago

Released in https://github.com/ChewKeanHo/AutomataCI/releases/tag/v2.1.0.