Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork937
Security: gitpython-developers/GitPython
Security
SECURITY.md
Only the latest version of GitPython can receive security updates. If a vulnerability is discovered, a fix can be issued in a new release.
| Version | Supported |
|---|---|
| 3.x.x | ✅ |
| < 3.0 | ❌ |
Please report private portions of a vulnerability tohttps://github.com/gitpython-developers/GitPython/security/advisories/new. Doing so helps to receive updates and collaborate on the matter, without disclosing it publicly right away.
Vulnerabilities in GitPython's dependenciesgitdb orsmmap, which primarily exist to support GitPython, can be reported here as well, at that same link. The affected package (GitPython,gitdb, orsmmap) can be included in the report, if known.
- Untrusted search path under some conditions on Windows allows arbitrary code executionGHSA-2mqj-m65w-jghx published
Jan 10, 2024 byByronHigh - Untrusted search path on Windows systems leading to arbitrary code executionGHSA-wfm5-v35h-vwf4 published
Aug 26, 2023 byByronHigh - Blind local file inclusionGHSA-cwvm-v4w8-q58c published
Aug 26, 2023 byByronModerate
Learn more about advisories related togitpython-developers/GitPython in theGitHub Advisory Database