Skip to content
This repository has been archived by the owner on Sep 16, 2019. It is now read-only.

Commit

Permalink
Add important notice on release page about vulnerability
Browse files Browse the repository at this point in the history
  • Loading branch information
Yuki Hattori committed Jun 14, 2018
1 parent ad38ec6 commit 9229b73
Show file tree
Hide file tree
Showing 2 changed files with 17 additions and 1 deletion.
2 changes: 1 addition & 1 deletion docs/.ruby-version
View file
@@ -1 +1 @@
2.5.0
2.5.1
16 changes: 16 additions & 0 deletions docs/_posts/2015-01-01-vulnerability.md
View file
@@ -0,0 +1,16 @@
---
category: top
---

<div class="col-xs-12" markdown="1">

## <span class="text-danger">[IMPORTANT]</span> Upgrade to v0.0.13

The vulnerability [CVE-2017-2239](https://nvd.nist.gov/vuln/detail/CVE-2017-2239) had been reported on Marp v0.0.10 or earlier, but _we have recognized a way to bypass a patch in v0.0.12_. We resolved again this in Marp v0.0.13.

**We strongly recommend upgrading Marp to v0.0.13.** Please download the latest version from above and overwrite your Marp.

[<i class="fa fa-angle-double-right" aria-hidden="true"></i> v0.0.13 release note](https://github.com/yhatt/marp/releases/tag/v0.0.13){:class="btn btn-sm btn-default" target="\_blank"}
[<i class="fa fa-github" aria-hidden="true"></i> More details at GitHub issue](https://github.com/yhatt/marp/issues/187){:class="btn btn-sm btn-default" target="\_blank"}

</div>

0 comments on commit 9229b73

Please sign in to comment.