[GHSA-q25c-c977-4cmh] Server-Side Request Forgery in langchain

github / advisory-database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

Creative Commons Attribution 4.0 International

1.67k stars 305 forks source link

[GHSA-q25c-c977-4cmh] Server-Side Request Forgery in langchain #4516

Closed HikaruEgashira closed 1 month ago

HikaruEgashira commented 1 month ago

Updates

Affected products
Description

Comments I have added sample code and improved the structure for better clarity.

shelbyc commented 1 month ago

👋 Hi @HikaruEgashira, thank you for suggesting a more structured advisory description and a code sample. How did you find the information you added to the pull request?

HikaruEgashira commented 1 month ago

Thank you for watching.

I referred to the following link(s): https://python.langchain.com/v0.1/docs/use_cases/web_scraping/

shelbyc commented 1 month ago

@HikaruEgashira Thank you for responding. We're not merging the pull request because the information provided in the suggested description change is very similar to the information already present in the advisory and we are not currently reviewing proof-of-concept code that doesn't originate from the maintainer. Have a good weekend! 👋

HikaruEgashira commented 1 month ago

Understood. I'll be careful next time. Have a good weekend.