You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
From my understanding, the code in this module is based on an earlier version of go-yaml. Can the go-yaml code base be upgraded to address this vulnerability?
The text was updated successfully, but these errors were encountered:
Our scans (using Mend) detected CVE-2019-11254 in the go-yaml package for versions <2.2.8. More details here
GHSA-wxc4-f4m6-wwqv
The recommended fix is to upgrade to at least https://github.com/go-yaml/yaml/tree/v2.2.8
From my understanding, the code in this module is based on an earlier version of go-yaml. Can the go-yaml code base be upgraded to address this vulnerability?
The text was updated successfully, but these errors were encountered: