Closed SBell6hf closed 2 years ago
https://github.com/square/certstrap/blob/fda01dbea1db250eabfe77a8ceef55232cd5a515/depot/depot.go#L116 It must be a minor mistype, however this actually allows looser permissions and prohibits stricter ones, instead of the opposite that we want.
The corrent statement should be if fi.Mode()&^tag.perm != 0 {
if fi.Mode()&^tag.perm != 0 {
Fixed in https://github.com/square/certstrap/pull/141
isemaya-square
commented
2 years ago isemaya-square
commented
2 years ago
https://github.com/square/certstrap/blob/fda01dbea1db250eabfe77a8ceef55232cd5a515/depot/depot.go#L116 It must be a minor mistype, however this actually allows looser permissions and prohibits stricter ones, instead of the opposite that we want.
The corrent statement should be
if fi.Mode()&^tag.perm != 0 {