Skip to content

Commit b9d4fbf

Browse files
author
octo-sts[bot]
committed
Adding CVE patch for package reflex0.6 to fix CVE: GHSA-59g5-xgcq-4qw3
<!--ci-cve-scan:must-fix: GHSA-59g5-xgcq-4qw3-->
1 parent db229d3 commit b9d4fbf

File tree

2 files changed

+10
-1
lines changed

2 files changed

+10
-1
lines changed

reflex0.6.yaml

Lines changed: 5 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,7 +1,7 @@
11
package:
22
name: reflex0.6
33
version: 0.6.6
4-
epoch: 100
4+
epoch: 101 # GHSA-59g5-xgcq-4qw3
55
description: Web apps in pure Python
66
copyright:
77
- license: Apache-2.0
@@ -34,6 +34,10 @@ pipeline:
3434
tag: v${{package.version}}
3535
expected-commit: 0c8192222fe8a6258e768fef82336dce3566671f
3636

37+
- uses: patch
38+
with:
39+
patches: GHSA-59g5-xgcq-4qw3.patch
40+
3741
- runs: '#Fix CVEs
3842
3943
poetry add "idna==3.7"
Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,5 @@
1+
--- a/pyproject.toml
2+
+++ b/pyproject.toml
3+
@@ -35 +35 @@
4+
-python-multipart = ">=0.0.5,<0.1"
5+
+python-multipart = ">=0.0.18,<0.1"

0 commit comments

Comments
 (0)