Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Insecure Jinja2 templates rendered in Haystack Components can lead to RCE #499

Closed
ZePan110 opened this issue Aug 16, 2024 · 1 comment
Closed
Assignees
Labels
DEV features
Milestone

Comments

@ZePan110
Copy link
Collaborator

ZePan110 commented Aug 16, 2024

Haystack version is too low and needs to be adapted to higher versions https://github.com/opea-project/GenAIComps/security/dependabot/12 PR #445

@chensuyue chensuyue added this to the v0.9 milestone Aug 16, 2024
@preethivenkatesh preethivenkatesh added the DEV features label Aug 21, 2024
@chensuyue chensuyue modified the milestones: v0.9, v1.0 Aug 27, 2024
@chensuyue
Copy link
Collaborator

#673 fixed.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
DEV features
Projects
None yet
Development

No branches or pull requests

4 participants