Closed rubur-webbeds closed 10 months ago
Our scanner detects the vulnerability CVE-2023-46129 in the package github.com/nats-io/nkeys. From this PR https://github.com/nats-io/nsc/pull/622 we see the new version is there, but not released yet.
github.com/nats-io/nkeys
Release a new nsc version including the patch. Thank you
nsc
No response
working on that.
I just released 2.8.3 - noticed that the 2.8.2 release was staged but not published. v2.8.3 should be happy with the CVE scans!.
What motivated this proposal?
Our scanner detects the vulnerability CVE-2023-46129 in the package
github.com/nats-io/nkeys
. From this PR https://github.com/nats-io/nsc/pull/622 we see the new version is there, but not released yet.What is the proposed change?
Release a new
nsc
version including the patch. Thank youWho benefits from this change?
No response
What alternatives have you evaluated?
No response