Dependabot Alert: Request smuggling leading to endpoint restriction bypass in Gunicorn

GSA / 889-tool

Web service for determining 889 compliance of vendors

1 stars 0 forks source link

Dependabot Alert: Request smuggling leading to endpoint restriction bypass in Gunicorn #218

Open JennaySDavis opened 2 months ago

JennaySDavis commented 2 months ago

https://github.com/GSA/889-tool/security/dependabot/25

JennaySDavis commented 2 months ago

#218 Acceptance Criteria

Pass/Fail	Description
Pass	Smoke Testing/Spot Checking the application

Comments/Additional Notes This dependabot alert is a back-end library update. This is not related to a specific piece of functionality.

ADA Compliance (Automated scan via Chrome Lighthouse) This user story includes no new or modified interface features; additional accessibility validation is unnecessary.

Passed 5/01/24- JSD

johnbeallgsa commented 2 months ago

Thanks for talking through this. Moving to Done.