We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
CVE-2022-30321 references github.com/hashicorp/go-getter, which may be a Go module.
Description: HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 1 of 3).
Links:
See doc/triage.md for instructions on how to triage this report.
module: github.com/hashicorp/go-getter package: n/a description: | HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 1 of 3). cves: - CVE-2022-30321 links: context: - https://discuss.hashicorp.com - https://discuss.hashicorp.com/t/hcsec-2022-13-multiple-vulnerabilities-in-go-getter-library/39930 - https://github.com/hashicorp/go-getter/releases
The text was updated successfully, but these errors were encountered:
Vulnerability in tool.
Sorry, something went wrong.
Revisit: go-getter is an importable package, not a tool.
Duplicate of #586
neild
No branches or pull requests
CVE-2022-30321 references github.com/hashicorp/go-getter, which may be a Go module.
Description:
HashiCorp go-getter through 2.0.2 does not safely perform downloads (issue 1 of 3).
Links:
See doc/triage.md for instructions on how to triage this report.
The text was updated successfully, but these errors were encountered: