commit | 54904b05764f337d7716691bd2240f328c010ec6 | [log] [tgz] |
---|---|---|
author | Sui Chen <suichen@google.com> | Fri Nov 05 15:03:19 2021 -0700 |
committer | Sui Chen <suichen@google.com> | Mon Nov 08 14:48:50 2021 -0800 |
tree | 5931dd3ba09741c5dfd12aaa1963f3e28c80d3be | |
parent | 27cf933227bdd9cb91eade05b65bc5e1de00bb20 [diff] |
dbus-vis: bump electron.js from 8.2.4 to 11.5.0 Dependabot reports a vulnerability with the old version (8.2.4) of electron.js: GHSA-mpjm-v997-c4h4 moderate severity Vulnerable versions: < 11.5.0 Patched version: 11.5.0 Impact: This vulnerability allows a sandboxed renderer to request a "thumbnail" image of an arbitrary file on the user's system. The thumbnail can potentially include significant parts of the original file, including textual data in many cases. Updating electron to 11.5.0 fixes this issue. Signed-off-by: Sui Chen <suichen@google.com> Change-Id: I86e5797d689e2b4b3e5643e587dc7ed7e482c659
The goal of this repository is to collect the two-minute hacks you write to automate interactions with OpenBMC systems.
It's highly likely the scripts don't meet your needs - they could be undocumented, dysfunctional or utterly broken. Please help us improve!
Then this repository aims to be the default destination for your otherwise un-homed scripts. As such we are setting the bar for submission pretty low, and we aim to make the process as easy as possible.
Please use gerrit for all patches to this repository:
Do note that you will need to be party to the OpenBMC CLA before your contributions can be accepted. See Gerrit Setup and CLA for more information.
So long as your patches look sane with a cursory glance you can expect them to be applied. We may push back in the event that similar tools already exist or there are egregious issues.
We don't ask for much, but you need to give us at least a Signed-off-by, use SPDX markers in your source files and put your work under an Apache 2.0 compatible license.
There's no standard way to install the scripts housed here, and adding parts of the repository to your PATH might be a bit of a dice-roll. We may also move or remove scripts from time to time as part of housekeeping. It's probably best to copy things out if you need stability.