Bug: Incorrect vulnerability details sonatype-2021-1485 urfave/negroni

OSSIndex / vulns

Report missing advisories and corrections on OSS Index

17 stars 12 forks source link

Bug: Incorrect vulnerability details sonatype-2021-1485 urfave/negroni #279

Closed haydenmeade closed 2 years ago

haydenmeade commented 2 years ago

Vulnerability URL

https://ossindex.sonatype.org/vulnerability/sonatype-2021-1485?component-type=golang&component-name=github.com/urfave/negroni

Component URL

https://ossindex.sonatype.org/component/pkg:golang/github.com/urfave/negroni

Description This vulnerability references a Pull Request that wasn't merged.

https://github.com/urfave/negroni/pull/259

ken-duck commented 2 years ago

Sorry for the delay. We have been working on getting appropriate internal processes defined for dealing with data issues in the new data set. We are now working on catching up on the backlog.

This issue has been passed to the research team on our internal tracking system, and I will report back here once more is known.

ken-duck commented 2 years ago

The reference has been fixed to https://github.com/urfave/negroni/pull/261

Thanks for the heads up