Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Published CVE's in Swift text table #43

Open
Divya-Somasundaram opened this issue Mar 5, 2021 · 2 comments
Open

Published CVE's in Swift text table #43

Divya-Somasundaram opened this issue Mar 5, 2021 · 2 comments

Comments

@Divya-Somasundaram
Copy link

Our OWASP third party scan tool reported 4 published CVE's in SwiftyTextTable library version 0.9.0 which were listed below.
CVE-2015-9251
CVE-2019-11358
CVE-2020-11022
CVE-2020-11023
Is there a plan to resolve this and If there is a plan when we can expect the new version of library.
@Roslund
Copy link
Contributor

Roslund commented Mar 11, 2021

All of the CVE's seem related to jQuery. Which is only included with the documentation. As far as I can tell, it's not something to worry about. A simple solution is to regenerate the docs with a newer version of Jazzy.

@Divya-Somasundaram
Copy link
Author

Hi Roslund,

Thanks for the info.

We are not building SwiftyTextTable from source. We are using Swiftlint(https://github.com/realm/SwiftLint), tool to enforce Swift style and conventions which is internally consuming SwiftyTextTable. So we were not able to manually integrate new version of Jazzy.

Is there a plan to upgrade jazzy to latest version in near future? can we expect updated version of library?

@sethfri sethfri mentioned this issue May 2, 2021
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@Roslund @Divya-Somasundaram