kamp/fdroidserver
1
0
Fork 0
mirror of https://gitlab.com/fdroid/fdroidserver.git synced 2024-11-10 17:30:11 +01:00
Code Activity

safety: make CVE-2024-5569 just a warning

Browse Source 
We get these packages from Debian, zipp is not used in production, and its
only a DoS.
This commit is contained in:
Hans-Christoph Steiner 2024-08-19 11:59:43 +02:00
parent 3a1bbb54aa
commit ef247bc97a
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
.safety-policy.yml
View File

@ -26,3 +26,6 @@ security:
70612: 70612:
reason: jinja2 is not used by fdroidserver, nor any dependencies I could find via debtree and pipdeptree. reason: jinja2 is not used by fdroidserver, nor any dependencies I could find via debtree and pipdeptree.
expires: '2026-05-31' expires: '2026-05-31'
72132:
reason: We get these packages from Debian, zipp is not used in production, and its only a DoS.
expires: '2026-08-31'