-
-
Notifications
You must be signed in to change notification settings - Fork 2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
High Security Vulnerability CVE-2024-23342 (ecdsa lib) #7248
Comments
According to |
Hi @tabdunabi,
The 'stock' moto installation does not pull in the At the end of the day, however, this is a library meant for testing purposes - not to be used with actual data in production. So I don't see how this is an security risk for Moto users. |
Thank you @bblommers!, I appreciate your quick response. |
The |
There is a
High
security vulnerability CVE-2024-23342 in theecdsa
lib, used bymoto
(see setup.cfg). We are usingmoto
in our codebase, and the vulnerability is being flagged by our security scans, which is blocking our release.ecdsa
lib is required bymoto
?The text was updated successfully, but these errors were encountered: