Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Investigate moderate risk security vulnerability for ws #26

Closed
jerboa88 opened this issue May 18, 2022 · 1 comment
Closed

Investigate moderate risk security vulnerability for ws #26

jerboa88 opened this issue May 18, 2022 · 1 comment
Labels
🛡 Priority: High Issue is of high priority ⏰ Status: Completed Issue has been resolved 🗃 Type: Maintenance General project upkeep task

Comments

@jerboa88
Copy link
Owner

Description
Update ws dep or mitigate the risk to resolve "ReDoS in Sec-Websocket-Protocol header".

@jerboa88 jerboa88 added ⏰ Status: New Issue has not been investigated yet 🗃 Type: Maintenance General project upkeep task ⏰ Status: Confirmed Issue has been reproduced 🛡 Priority: High Issue is of high priority and removed ⏰ Status: New Issue has not been investigated yet labels May 18, 2022
@jerboa88 jerboa88 self-assigned this May 18, 2022
@jerboa88 jerboa88 added ⏰ Status: In Progress Issue is being worked on and removed ⏰ Status: Confirmed Issue has been reproduced labels May 18, 2022
@jerboa88
Copy link
Owner Author

Fixed in f41c78d by force bumping patch version.

@jerboa88 jerboa88 added ⏰ Status: Completed Issue has been resolved and removed ⏰ Status: In Progress Issue is being worked on labels May 18, 2022
@jerboa88 jerboa88 removed their assignment May 18, 2022
@jerboa88 jerboa88 changed the title Mitigate moderate risk security vulnerability for ws Investigate moderate risk security vulnerability for ws Jun 2, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
🛡 Priority: High Issue is of high priority ⏰ Status: Completed Issue has been resolved 🗃 Type: Maintenance General project upkeep task
Projects
None yet
Development

No branches or pull requests

1 participant