[GHSA-3h5v-q93c-6h6q] ws affected by a DoS when handling a request with many HTTP headers#7175
Conversation
|
Hi there @lpinca! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository. This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory |
github-actions
bot
changed the base branch from
main
to
momomelis/advisory-improvement-7175
There was a problem hiding this comment.
Pull request overview
Updates the GHSA advisory metadata for the ws DoS vulnerability, including timestamp and severity scoring entries.
Changes:
- Updated the advisory
modifiedtimestamp. - Removed the CVSS v3 severity entry, leaving only CVSS v4.
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
You can also share your feedback on Copilot code review. Take the survey.
| "severity": [ | ||
| { | ||
| "type": "CVSS_V3", | ||
| "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" | ||
| }, | ||
| { | ||
| "type": "CVSS_V4", | ||
| "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N" |
Updates
Comments
git log --oneline -2
643f4be Add node_modules and dist to .gitignore
3d26437 Add InteractiveGrass grass discovery game component