search

mudler / yip

:pushpin: Yaml Instructions Processor - Simply applies a cloud-init style yaml file to the system
Apache License 2.0
73 stars 20 forks source link

go-git 5.4.2 has critical cve #129

Closed nianyush closed 7 months ago

nianyush commented 8 months ago

Can we merge this and create a new release to resolve this cve? Reference for cve: https://github.com/spectrocloud/CanvOS/issues/143

Itxaka commented 8 months ago

Fixed by https://github.com/mudler/yip/pull/130

mudler commented 7 months ago

closing, new release with the PR is out