Skip to content

Commit

Permalink
Update Pipfile.lock
Browse files Browse the repository at this point in the history 
CVE-2017-18342
Vulnerable versions: < 4.2b1
Patched version: 4.2b1

In PyYAML before 4.1, the yaml.load() API could execute arbitrary code. In other words, yaml.safe_load is not used.
  • Loading branch information
@sserrata
sserrata authored Feb 28, 2019
1 parent 8db3306 commit 6dcb098
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion Pipfile.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit 6dcb098

Please sign in to comment.