From 7f6b633986f777bdc7eea113d61d8c121a823586 Mon Sep 17 00:00:00 2001 From: "octo-sts[bot]" <157150467+octo-sts[bot]@users.noreply.github.com> Date: Thu, 19 Dec 2024 14:45:59 +0000 Subject: [PATCH] Adding Advisory GHSA-w32m-9786-jp63 for pulumi-language-yaml (#10349) Co-authored-by: octo-sts[bot] <157150467+octo-sts@users.noreply.github.com> --- pulumi-language-yaml.advisories.yaml | 18 ++++++++++++++++++ 1 file changed, 18 insertions(+) diff --git a/pulumi-language-yaml.advisories.yaml b/pulumi-language-yaml.advisories.yaml index 137c6a7c7d..3303ac0408 100644 --- a/pulumi-language-yaml.advisories.yaml +++ b/pulumi-language-yaml.advisories.yaml @@ -128,6 +128,24 @@ advisories: data: fixed-version: 1.7.0-r1 + - id: CGA-c9pg-73rj-g3rh + aliases: + - CVE-2024-45338 + - GHSA-w32m-9786-jp63 + events: + - timestamp: 2024-12-19T13:16:10Z + type: detection + data: + type: scan/v1 + data: + subpackageName: pulumi-language-yaml + componentID: bc2e49e9bb3d816c + componentName: golang.org/x/net + componentVersion: v0.28.0 + componentType: go-module + componentLocation: /usr/bin/pulumi-language-yaml + scanner: grype + - id: CGA-gcxf-4q4p-pwff aliases: - CVE-2024-24783