Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

fix: security vulnerability that allows remote code execution (ghsa p6h4 93qp jhcm) #7841

Merged
merged 3 commits into from
Mar 11, 2022
Merged

fix: security vulnerability that allows remote code execution (ghsa p6h4 93qp jhcm) #7841

merged 3 commits into from
Mar 11, 2022

Conversation

mtrezza
Copy link
Member

@mtrezza mtrezza commented Mar 11, 2022
edited
Loading

This is a security fix for GHSA-p6h4-93qp-jhcm.

@parse-github-assistant
Copy link

parse-github-assistant bot commented Mar 11, 2022
edited
Loading

Thanks for opening this pull request!

  • ❌ Please edit your post and use the provided template when creating a new pull request. This helps everyone to understand your post better and asks for essential information to quicker review the pull request.

@mtrezza mtrezza changed the base branch from alpha to release-4.x.x March 11, 2022 21:39
@mtrezza mtrezza closed this Mar 11, 2022
@mtrezza mtrezza reopened this Mar 11, 2022
@mtrezza mtrezza changed the title Fix ghsa p6h4 93qp jhcm fix: ghsa p6h4 93qp jhcm Mar 11, 2022
@codecov
Copy link

codecov bot commented Mar 11, 2022
edited
Loading

Codecov Report

❗ No coverage uploaded for pull request base (release-4.x.x@318c203). Click here to learn what that means.
The diff coverage is n/a.

Impacted file tree graph

@@               Coverage Diff                @@
##             release-4.x.x    #7841   +/-   ##
================================================
  Coverage                 ?   93.85%           
================================================
  Files                    ?      170           
  Lines                    ?    12473           
  Branches                 ?        0           
================================================
  Hits                     ?    11706           
  Misses                   ?      767           
  Partials                 ?        0

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 318c203...4e0f03d. Read the comment docs.

@mtrezza mtrezza changed the title fix: ghsa p6h4 93qp jhcm fix: security vulnerability that allows remote code execution (ghsa p6h4 93qp jhcm) Mar 11, 2022
@mtrezza mtrezza merged commit 886bfd7 into parse-community:release-4.x.x Mar 11, 2022
parseplatformorg pushed a commit that referenced this pull request Mar 11, 2022
@semantic-release-bot
chore(release): 4.10.7 [skip ci]
7c84477 
## [4.10.7](4.10.6...4.10.7) (2022-03-11)

### Bug Fixes

* security vulnerability that allows remote code execution (ghsa p6h4 93qp jhcm) ([#7841](#7841)) ([886bfd7](886bfd7))
@parseplatformorg
Copy link
Contributor

🎉 This change has been released in version 4.10.7

@parseplatformorg parseplatformorg added the state:released-4.x.x Released as LTS version label Mar 11, 2022
@parse-github-assistant
Copy link

The label state:released-4.x.x cannot be used here.

@parse-github-assistant parse-github-assistant bot removed the state:released-4.x.x Released as LTS version label Mar 11, 2022
@mtrezza mtrezza deleted the fix-GHSA-p6h4-93qp-jhcm branch March 12, 2022 15:48
# for free to join this conversation on GitHub. Already have an account? # to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mtrezza @parseplatformorg