Workflow

PyPi: Yq

PVE-2021-42987

Safety vulnerability ID: 42987

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Dec 03, 2021 Updated at Apr 27, 2024

Advisory

Yq 2.13.0 armors against entity expansion attacks. https://github.com/kislyuk/yq/commit…

[This advisory has been limited. Please create a free account to view the full advisory.]

Affected package

yq

Latest version: 3.4.3

Command-line YAML/XML processor - jq wrapper for YAML/XML documents

Affected versions

Fixed versions

Vulnerability changelog

================================ - Armor against entity expansion attacks - Improve Y…

[This text has been limited. Please create a free account to view the full text.]

Resources