Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Upgrade syft and grype for path traversal fix #235

Merged
merged 1 commit into from
Jan 31, 2024
Merged

Upgrade syft and grype for path traversal fix #235

merged 1 commit into from
Jan 31, 2024

Conversation

wagoodman
Copy link
Contributor

Incorporates anchore/grype#1688 .

@wagoodman wagoodman requested a review from a team January 31, 2024 18:02
@wagoodman wagoodman added the security Relating to a potential security issue label Jan 31, 2024
@wagoodman wagoodman self-assigned this Jan 31, 2024
@wagoodman wagoodman enabled auto-merge (squash) January 31, 2024 18:06
@wagoodman wagoodman merged commit 51242d9 into main Jan 31, 2024
14 checks passed
@wagoodman wagoodman deleted the upgrade-grype-path-traversal branch January 31, 2024 18:20
juan131 pushed a commit to juan131/grype-db that referenced this pull request Feb 5, 2024
@wagoodman @juan131
upgrade syft and grype for path traversal fix (anchore#235)
ec5a886 
Signed-off-by: Alex Goodman <[email protected]>
willmurphyscode pushed a commit that referenced this pull request Mar 27, 2024
@dependabot
chore(deps-dev): Bump black from 23.3.0 to 23.7.0 (#235)
ee45d4e 
Bumps [black](https://github.com/psf/black) from 23.3.0 to 23.7.0.
- [Release notes](https://github.com/psf/black/releases)
- [Changelog](https://github.com/psf/black/blob/main/CHANGES.md)
- [Commits](psf/black@23.3.0...23.7.0)

---
updated-dependencies:
- dependency-name: black
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@kzantow kzantow kzantow approved these changes

Assignees

@wagoodman wagoodman

Labels
security Relating to a potential security issue
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@wagoodman @kzantow