geofffranks / ssh-keys-alfred-workflow Goto Github PK
View Code? Open in Web Editor NEWAn Alfred 2.0 workflow for lookup up/copying SSH keys via github
An Alfred 2.0 workflow for lookup up/copying SSH keys via github
YAML support for the Go language.
Library home page: https://proxy.golang.org/github.com/go-yaml/yaml/@v/v2.0.0+incompatible.zip
Dependency Hierarchy:
Found in HEAD commit: 2f8b12df3a2bf883fe01937a9f307fb9fba89384
The Kubernetes API Server component in versions 1.1-1.14, and versions prior to 1.15.10, 1.16.7 and 1.17.3 allows an authorized user who sends malicious YAML payloads to cause the kube-apiserver to consume excessive CPU cycles while parsing YAML.
Publish Date: 2020-04-01
URL: CVE-2019-11254
Base Score Metrics:
Step up your Open Source Security Game with Mend here
YAML support for the Go language.
Dependency Hierarchy:
Found in HEAD commit: 2f8b12df3a2bf883fe01937a9f307fb9fba89384
An issue in the Unmarshal function in Go-Yaml v3 causes the program to crash when attempting to deserialize invalid input.
Publish Date: 2022-05-19
URL: CVE-2022-28948
Base Score Metrics:
Type: Upgrade version
Origin: GHSA-fm53-mpmp-7qw2
Release Date: 2022-05-19
Fix Resolution: v3.0.0
Step up your Open Source Security Game with Mend here
YAML support for the Go language.
Library home page: https://proxy.golang.org/github.com/go-yaml/yaml/@v/v2.0.0+incompatible.zip
Dependency Hierarchy:
Found in HEAD commit: 2f8b12df3a2bf883fe01937a9f307fb9fba89384
Parsing malicious or large YAML documents can consume excessive amounts of CPU or memory.
Publish Date: 2022-12-27
URL: CVE-2022-3064
Base Score Metrics:
Type: Upgrade version
Origin: https://pkg.go.dev/vuln/GO-2022-0956
Release Date: 2022-12-27
Fix Resolution: v2.2.4
Step up your Open Source Security Game with Mend here
YAML support for the Go language.
Library home page: https://proxy.golang.org/github.com/go-yaml/yaml/@v/v2.0.0+incompatible.zip
Dependency Hierarchy:
Found in HEAD commit: 2f8b12df3a2bf883fe01937a9f307fb9fba89384
Due to unbounded alias chasing, a maliciously crafted YAML file can cause the system to consume significant system resources. If parsing user input, this may be used as a denial of service vector.
Publish Date: 2022-12-27
URL: CVE-2021-4235
Base Score Metrics:
Step up your Open Source Security Game with Mend here
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.