Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Blocker: Newly added pins introduce known high/critical CVEs
Every dependency added in this hunk is flagged by OSV/GHSA with active HIGH or CRITICAL vulnerabilities:
ecdsa==0.19.1→ GHSA-wj6h-64fc-37mp (Minerva timing attack).fastapi==0.104.1→ PYSEC-2024-38 (security advisory published for this release).jinja2==3.1.2→ multiple sandbox breakout/XSS advisories (GHSA-cpwx-vrp4-4pq7, GHSA-gmj6-6f8f-6699, GHSA-h5c8-rqwp-cp95, GHSA-h75v-3vvj-5mfj, GHSA-q2x7-8rv6-6q7h).python-jose==3.3.0→ critical algorithm-confusion and decompression DoS issues (GHSA-6c5p-j8vq-pqhj, GHSA-cjwg-qfpm-7377, PYSEC-2024-232/233).python-multipart==0.0.6→ multiple multipart parsing DoS advisories (GHSA-2jv5-9r88-3w3p, GHSA-59g5-xgcq-4qw3).starlette==0.27.0→ multipart DoS advisories (GHSA-2c2j-9gv5-cj73, GHSA-f96h-pmfr-66vw).Please update each pin to a version that is listed as patched in the corresponding advisory (or apply an alternative mitigation/library if no fixed release exists yet) before merging. Right now this PR would ship known-vulnerable packages into production.
🧰 Tools
🪛 OSV Scanner (2.2.2)
[HIGH] 1-1: ecdsa 0.19.1: Minerva timing attack on P-256 in python-ecdsa
(GHSA-wj6h-64fc-37mp)
[HIGH] 2-2: fastapi 0.104.1: undefined
(PYSEC-2024-38)
[HIGH] 3-3: jinja2 3.1.2: Jinja2 vulnerable to sandbox breakout through attr filter selecting format method
(GHSA-cpwx-vrp4-4pq7)
[HIGH] 3-3: jinja2 3.1.2: Jinja has a sandbox breakout through malicious filenames
(GHSA-gmj6-6f8f-6699)
[HIGH] 3-3: jinja2 3.1.2: Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter
(GHSA-h5c8-rqwp-cp95)
[HIGH] 3-3: jinja2 3.1.2: Jinja vulnerable to HTML attribute injection when passing user input as keys to xmlattr filter
(GHSA-h75v-3vvj-5mfj)
[HIGH] 3-3: jinja2 3.1.2: Jinja has a sandbox breakout through indirect reference to format method
(GHSA-q2x7-8rv6-6q7h)
[CRITICAL] 4-4: python-jose 3.3.0: undefined
(PYSEC-2024-232)
[CRITICAL] 4-4: python-jose 3.3.0: undefined
(PYSEC-2024-233)
[CRITICAL] 4-4: python-jose 3.3.0: python-jose algorithm confusion with OpenSSH ECDSA keys
(GHSA-6c5p-j8vq-pqhj)
[CRITICAL] 4-4: python-jose 3.3.0: python-jose denial of service via compressed JWE content
(GHSA-cjwg-qfpm-7377)
[HIGH] 5-5: python-multipart 0.0.6: python-multipart vulnerable to Content-Type Header ReDoS
(GHSA-2jv5-9r88-3w3p)
[HIGH] 5-5: python-multipart 0.0.6: Denial of service (DoS) via deformation
multipart/form-databoundary(GHSA-59g5-xgcq-4qw3)
[HIGH] 6-6: starlette 0.27.0: Starlette has possible denial-of-service vector when parsing large files in multipart forms
(GHSA-2c2j-9gv5-cj73)
[HIGH] 6-6: starlette 0.27.0: Starlette Denial of service (DoS) via multipart/form-data
(GHSA-f96h-pmfr-66vw)
🤖 Prompt for AI Agents