Skip to content

Commit

Permalink
Ignore CVE-2023-24329
Browse files Browse the repository at this point in the history 
We don't use Python. At least not directly. But assuming we do use
Python unexpectedtly, the nature of the Docs site is such that we aren't
attempting to parse URLs supplied by end-users anywhere. Therefore the
likelihood of a malicious string to urllib.parse is extremely low.
  • Loading branch information
@ellsclytn
ellsclytn committed Oct 11, 2023
1 parent 01e86a9 commit 1f20381
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions .buildkite/pipeline.deploy.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -32,6 +32,7 @@ steps:
- CVE-2023-35827 # linux 6.1.55-1
- CVE-2023-2953 # openldap 2.5.13+dfsg-5
- CVE-2023-31484 # perl 5.36.0-7
- CVE-2023-24329 # python3.11 3.11.2-6

# If the current user is part of the deploy team, then wait for everything to
# finish before deploying
Expand Down

0 comments on commit 1f20381

Please sign in to comment.