diff --git a/techstack.md b/techstack.md
index 9f054c4b300..8d3b2392fc7 100644
--- a/techstack.md
+++ b/techstack.md
@@ -3,26 +3,26 @@
## Tech Stack
bariscaglar/azure-cli is built on the following main stack:
-- [Microsoft Azure](https://azure.microsoft.com/en-us/) – Cloud Hosting
-- [Fabric](http://fabfile.org) – Server Configuration and Automation
-- [Ruby](https://www.ruby-lang.org) – Languages
-- [Python](https://www.python.org) – Languages
- [C#](http://csharp.net) – Languages
- [C++](http://www.cplusplus.com/) – Languages
-- [ExpressJS](http://expressjs.com/) – Microframeworks (Backend)
- [JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages
-- [Azure Cosmos DB](https://azure.microsoft.com/en-us/services/cosmos-db/) – NoSQL Database as a Service
-- [Visual Studio](http://msdn.microsoft.com/en-us/vstudio/aa718325.aspx) – Integrated Development Environment
-- [Azure Storage](http://azure.microsoft.com/en-us/services/storage/) – Cloud Storage
- [Jinja](https://palletsprojects.com/p/jinja/) – Templating Languages & Extensions
-- [PowerShell](https://docs.microsoft.com/en-us/powershell/) – Shells
-- [Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells
-- [pip](https://pypi.org/project/pip/) – Front End Package Manager
+- [Python](https://www.python.org) – Languages
+- [Ruby](https://www.ruby-lang.org) – Languages
- [.NET Core](https://docs.microsoft.com/en-us/dotnet/core/) – Frameworks (Full Stack)
-- [Azure Pipelines](https://azure.microsoft.com/ko-kr/services/devops/pipelines/) – Continuous Integration
- [ASP.NET Core](docs.microsoft.com/en-us/aspnet/core/) – Frameworks (Full Stack)
-- [Travis CI](http://travis-ci.com/) – Continuous Integration
+- [ExpressJS](http://expressjs.com/) – Microframeworks (Backend)
+- [Azure Cosmos DB](https://azure.microsoft.com/en-us/services/cosmos-db/) – NoSQL Database as a Service
+- [Azure Storage](http://azure.microsoft.com/en-us/services/storage/) – Cloud Storage
+- [Azure Pipelines](https://azure.microsoft.com/ko-kr/services/devops/pipelines/) – Continuous Integration
- [Docker](https://www.docker.com/) – Virtual Machine Platforms & Containers
+- [Fabric](http://fabfile.org) – Server Configuration and Automation
+- [Travis CI](http://travis-ci.com/) – Continuous Integration
+- [Visual Studio](http://msdn.microsoft.com/en-us/vstudio/aa718325.aspx) – Integrated Development Environment
+- [pip](https://pypi.org/project/pip/) – Front End Package Manager
+- [Microsoft Azure](https://azure.microsoft.com/en-us/) – Cloud Hosting
+- [PowerShell](https://docs.microsoft.com/en-us/powershell/) – Shells
+- [Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells
Full tech stack [here](/techstack.md)
@@ -32,26 +32,26 @@ Full tech stack [here](/techstack.md)
## Tech Stack
bariscaglar/azure-cli is built on the following main stack:
-- 
[Microsoft Azure](https://azure.microsoft.com/en-us/) – Cloud Hosting
-- 
[Fabric](http://fabfile.org) – Server Configuration and Automation
-- 
[Ruby](https://www.ruby-lang.org) – Languages
-- 
[Python](https://www.python.org) – Languages
- 
[C#](http://csharp.net) – Languages
- 
[C++](http://www.cplusplus.com/) – Languages
-- 
[ExpressJS](http://expressjs.com/) – Microframeworks (Backend)
- 
[JavaScript](https://developer.mozilla.org/en-US/docs/Web/JavaScript) – Languages
-- 
[Azure Cosmos DB](https://azure.microsoft.com/en-us/services/cosmos-db/) – NoSQL Database as a Service
-- 
[Visual Studio](http://msdn.microsoft.com/en-us/vstudio/aa718325.aspx) – Integrated Development Environment
-- 
[Azure Storage](http://azure.microsoft.com/en-us/services/storage/) – Cloud Storage
- 
[Jinja](https://palletsprojects.com/p/jinja/) – Templating Languages & Extensions
-- 
[PowerShell](https://docs.microsoft.com/en-us/powershell/) – Shells
-- 
[Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells
-- 
[pip](https://pypi.org/project/pip/) – Front End Package Manager
+- [Python](https://www.python.org) – Languages
+- [Ruby](https://www.ruby-lang.org) – Languages
- 
[.NET Core](https://docs.microsoft.com/en-us/dotnet/core/) – Frameworks (Full Stack)
-- 
[Azure Pipelines](https://azure.microsoft.com/ko-kr/services/devops/pipelines/) – Continuous Integration
- 
[ASP.NET Core](docs.microsoft.com/en-us/aspnet/core/) – Frameworks (Full Stack)
-- 
[Travis CI](http://travis-ci.com/) – Continuous Integration
+- [ExpressJS](http://expressjs.com/) – Microframeworks (Backend)
+- [Azure Cosmos DB](https://azure.microsoft.com/en-us/services/cosmos-db/) – NoSQL Database as a Service
+- [Azure Storage](http://azure.microsoft.com/en-us/services/storage/) – Cloud Storage
+- [Azure Pipelines](https://azure.microsoft.com/ko-kr/services/devops/pipelines/) – Continuous Integration
- 
[Docker](https://www.docker.com/) – Virtual Machine Platforms & Containers
+- [Fabric](http://fabfile.org) – Server Configuration and Automation
+- [Travis CI](http://travis-ci.com/) – Continuous Integration
+- [Visual Studio](http://msdn.microsoft.com/en-us/vstudio/aa718325.aspx) – Integrated Development Environment
+- [pip](https://pypi.org/project/pip/) – Front End Package Manager
+- [Microsoft Azure](https://azure.microsoft.com/en-us/) – Cloud Hosting
+- [PowerShell](https://docs.microsoft.com/en-us/powershell/) – Shells
+- [Shell](https://en.wikipedia.org/wiki/Shell_script) – Shells
Full tech stack [here](/techstack.md)
@@ -62,7 +62,7 @@ Full tech stack [here](/techstack.md)
# Tech Stack File
 [bariscaglar/azure-cli](https://github.com/bariscaglar/azure-cli)
-|124
Tools used|12/21/23
Report generated|
+|125
Tools used|02/29/24
Report generated|
|------|------|
@@ -307,9 +307,9 @@ Full tech stack [here](/techstack.md)
-## 
Open source packages (98)
+## Open source packages (99)
-## 
PyPI (97)
+## PyPI (98)
|NAME|VERSION|LAST UPDATED|LAST UPDATED BY|LICENSE|VULNERABILITIES|
|:------|:------|:------|:------|:------|:------|
@@ -317,6 +317,7 @@ Full tech stack [here](/techstack.md)
|[MarkupSafe](https://pypi.org/project/MarkupSafe)|v1.1.1|06/25/19|Martin Strobel |BSD-3-Clause|N/A|
|[PyJWT](https://pypi.org/project/PyJWT)|v1.7.1|06/25/19|Martin Strobel |MIT|N/A|
|[PyNaCl](https://pypi.org/project/PyNaCl)|v1.3.0|06/25/19|Martin Strobel |Apache-2.0|N/A|
+|[PyYAML](https://pypi.org/project/PyYAML)|v5.1.1|06/25/19|Martin Strobel |MIT|[CVE-2020-14343](https://github.com/advisories/GHSA-8q59-q68h-6hv4) (Critical)|
|[Pygments](https://pypi.org/project/Pygments)|v2.4.2|06/25/19|Martin Strobel |BSD-3-Clause|[CVE-2021-27291](https://github.com/advisories/GHSA-pq64-v7f5-gqh8) (High)
[CVE-2021-20270](https://github.com/advisories/GHSA-9w8r-397f-prfh) (High)
[CVE-2022-40896](https://github.com/advisories/GHSA-mrwq-x4v8-fh7p) (Moderate)|
|[adal](https://pypi.org/project/adal)|v1.2.1|06/25/19|Martin Strobel |MIT|N/A|
|[antlr4-python3-runtime](https://pypi.org/project/antlr4-python3-runtime)|v4.7.2|06/25/19|Martin Strobel |BSD-3-Clause|N/A|
@@ -363,7 +364,7 @@ Full tech stack [here](/techstack.md)
|[chardet](https://pypi.org/project/chardet)|v3.0.4|06/25/19|Martin Strobel |LGPL-2.1|N/A|
|[colorama](https://pypi.org/project/colorama)|v0.4.1|06/25/19|Martin Strobel |BSD-3-Clause|N/A|
|[contextlib2](https://pypi.org/project/contextlib2)|v0.5.5|07/11/19|Sam |psfrag|N/A|
-|[cryptography](https://pypi.org/project/cryptography)|v2.7|06/25/19|Martin Strobel |BSD-3-Clause,Apache-2.0|[CVE-2023-0286](https://github.com/advisories/GHSA-x4qr-2fvf-3mr5) (High)
[CVE-2020-25659](https://github.com/advisories/GHSA-hggm-jpg3-v476) (Moderate)
[CVE-2023-23931](https://github.com/advisories/GHSA-w7pp-m8wf-vj6r) (Moderate)
[](https://github.com/advisories/GHSA-jm77-qphf-c4w8) (Low)
[](https://github.com/advisories/GHSA-v8gr-m533-ghj9) (Low)
[](https://github.com/advisories/GHSA-5cpq-8wj7-hf2v) (Low)|
+|[cryptography](https://pypi.org/project/cryptography)|v2.7|06/25/19|Martin Strobel |BSD-3-Clause,Apache-2.0|[CVE-2023-0286](https://github.com/advisories/GHSA-x4qr-2fvf-3mr5) (High)
[CVE-2023-50782](https://github.com/advisories/GHSA-3ww4-gg4f-jr7f) (High)
[CVE-2020-25659](https://github.com/advisories/GHSA-hggm-jpg3-v476) (Moderate)
[CVE-2023-23931](https://github.com/advisories/GHSA-w7pp-m8wf-vj6r) (Moderate)
[CVE-2024-0727](https://github.com/advisories/GHSA-9v9h-cgj8-h64p) (Moderate)
[](https://github.com/advisories/GHSA-v8gr-m533-ghj9) (Low)
[](https://github.com/advisories/GHSA-5cpq-8wj7-hf2v) (Low)
[](https://github.com/advisories/GHSA-jm77-qphf-c4w8) (Low)|
|[enum34](https://pypi.org/project/enum34)|v1.1.6|06/25/19|Martin Strobel |DSDP|N/A|
|[funcsigs](https://pypi.org/project/funcsigs)|v1.0.2|06/25/19|Martin Strobel |Other|N/A|
|[futures](https://pypi.org/project/futures)|v3.2.0|06/25/19|Martin Strobel |Python-2.0|N/A|
diff --git a/techstack.yml b/techstack.yml
index a2a89e27fec..aac6ad3fe64 100644
--- a/techstack.yml
+++ b/techstack.yml
@@ -2,11 +2,11 @@ repo_name: bariscaglar/azure-cli
report_id: 2dbc405e68ffad8196d2f711a0d3b4c3
version: 0.1
repo_type: Public
-timestamp: '2023-12-21T22:33:35+00:00'
+timestamp: '2024-02-29T19:11:05+00:00'
requested_by: dorfire
provider: github
branch: dev
-detected_tools_count: 124
+detected_tools_count: 125
tools:
- name: C#
description: Simple, general-purpose, object-oriented programming language for the
@@ -17,6 +17,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/1015/1200px-C_Sharp_wordmark.svg.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: C++
description: Has imperative, object-oriented and generic programming features, while
@@ -27,6 +28,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/1049/cplusplus.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: JavaScript
description: Lightweight, interpreted, object-oriented language with first-class
@@ -37,6 +39,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/1209/javascript.jpeg
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: Jinja
description: Full featured template engine for Python
@@ -47,6 +50,7 @@ tools:
category: Languages & Frameworks
sub_category: Templating Languages & Extensions
image_url: https://img.stackshare.io/service/2303/New_Project__20_.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/scripts/release/homebrew/docker/requirements.txt
detection_source: scripts/release/homebrew/docker/requirements.txt
last_updated_by: Troy Dai
last_updated_on: 2018-10-04 05:37:14.000000000 Z
@@ -59,6 +63,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/993/pUBY5pVj.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: Ruby
description: A dynamic, interpreted, open source programming language with a focus
@@ -69,6 +74,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/989/ruby.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
@@ -125,6 +131,7 @@ tools:
category: Data Stores
sub_category: NoSQL Database as a Service
image_url: https://img.stackshare.io/service/1369/nquiptD9.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Zim Kalinowski
last_updated_on: 2019-07-16 07:39:05.000000000 Z
@@ -136,6 +143,7 @@ tools:
category: Data Stores
sub_category: Cloud Storage
image_url: https://img.stackshare.io/service/2099/azureStorage.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Zim Kalinowski
last_updated_on: 2019-07-16 07:39:05.000000000 Z
@@ -147,6 +155,7 @@ tools:
category: Build, Test, Deploy
sub_category: Continuous Integration
image_url: https://img.stackshare.io/service/10164/528389819366_e7a0672f0480b3e98d21_512.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/azure-pipelines.yml
detection_source: azure-pipelines.yml
last_updated_by: Martin Strobel
last_updated_on: 2019-07-01 19:56:15.000000000 Z
@@ -159,6 +168,7 @@ tools:
category: Build, Test, Deploy
sub_category: Virtual Machine Platforms & Containers
image_url: https://img.stackshare.io/service/586/n4u37v9t_400x400.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: Fabric
description: Simple, Pythonic remote execution and deployment
@@ -169,6 +179,7 @@ tools:
category: Build, Test, Deploy
sub_category: Server Configuration and Automation
image_url: https://img.stackshare.io/service/662/79c2d43ca09b8321909833f37a500799.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
@@ -180,6 +191,7 @@ tools:
category: Build, Test, Deploy
sub_category: Version Control System
image_url: https://img.stackshare.io/service/1046/git.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: PyPI
description: A repository of software for the Python programming language
@@ -189,6 +201,7 @@ tools:
category: Build, Test, Deploy
sub_category: Hosted Package Repository
image_url: https://img.stackshare.io/service/12572/-RIWgodF_400x400.jpg
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py3.Darwin.txt
detection_source: src/azure-cli/requirements.py3.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
@@ -200,6 +213,7 @@ tools:
category: Build, Test, Deploy
sub_category: Package Managers
image_url: https://img.stackshare.io/service/12795/5jL6-BA5_400x400.jpeg
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
@@ -212,6 +226,7 @@ tools:
category: Build, Test, Deploy
sub_category: Continuous Integration
image_url: https://img.stackshare.io/service/460/Lu6cGu0z_400x400.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/.travis.yml
detection_source: ".travis.yml"
last_updated_by: yugangw-msft
last_updated_on: 2016-02-22 21:15:12.000000000 Z
@@ -224,6 +239,7 @@ tools:
category: Build, Test, Deploy
sub_category: Integrated Development Environment
image_url: https://img.stackshare.io/service/1451/SR2hUhQN.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/azure-cli.sln
detection_source: azure-cli.sln
last_updated_by: Travis Prescott
last_updated_on: 2016-11-04 16:56:37.000000000 Z
@@ -235,6 +251,7 @@ tools:
category: Build, Test, Deploy
sub_category: Front End Package Manager
image_url: https://img.stackshare.io/service/1120/lejvzrnlpb308aftn31u.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/azure/cli/command_modules/appservice/sample-repo-for-deployment-test/package.json
detection_source: src/azure-cli/azure/cli/command_modules/appservice/sample-repo-for-deployment-test/package.json
last_updated_by: Yugang Wang
last_updated_on: 2019-03-14 04:47:25.000000000 Z
@@ -246,6 +263,7 @@ tools:
category: Build, Test, Deploy
sub_category: Front End Package Manager
image_url: https://img.stackshare.io/service/5559/-RIWgodF_400x400.jpg
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/requirements.txt
detection_source: requirements.txt
last_updated_by: Troy Dai
last_updated_on: 2018-08-01 23:10:58.000000000 Z
@@ -258,6 +276,7 @@ tools:
category: Application Hosting
sub_category: Cloud Hosting
image_url: https://img.stackshare.io/service/213/default_88defae415fcb9cd0ac5d36c1ed27e74133c6287.jpg
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Zim Kalinowski
last_updated_on: 2019-07-16 07:39:05.000000000 Z
@@ -268,6 +287,7 @@ tools:
open_source: false
hosted_saas: false
image_url: https://img.stackshare.io/service/8585/a159037c4838e54e93d9f630a295c396_normal.jpeg
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: PowerShell
description: A task automation and configuration management framework
@@ -277,12 +297,14 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/3681/powershell-logo.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: PyYAML
website_url: http://pyyaml.org/wiki/PyYAML
open_source: false
hosted_saas: false
image_url: https://img.stackshare.io/service/3730/no-img-open-source.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
@@ -295,6 +317,7 @@ tools:
category: Languages & Frameworks
sub_category: Languages
image_url: https://img.stackshare.io/service/4631/default_c2062d40130562bdc836c13dbca02d318205a962.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli
detection_source: Repo Metadata
- name: ConfigArgParse
description: A drop-in replacement for argparse that allows options to also be set
@@ -353,6 +376,27 @@ tools:
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Martin Strobel
last_updated_on: 2019-06-25 19:08:17.000000000 Z
+- name: PyYAML
+ description: YAML parser and emitter for Python
+ package_url: https://pypi.org/project/PyYAML
+ version: 5.1.1
+ license: MIT
+ open_source: true
+ hosted_saas: false
+ category: Libraries
+ sub_category: PyPI Packages
+ image_url: https://img.stackshare.io/package/19829/default_74a61b43bdb9fc0cba2978316b9976f43545029b.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
+ detection_source: src/azure-cli/requirements.py2.Darwin.txt
+ last_updated_by: Martin Strobel
+ last_updated_on: 2019-06-25 19:08:17.000000000 Z
+ vulnerabilities:
+ - name: Improper Input Validation in PyYAML
+ cve_id: CVE-2020-14343
+ cve_url: https://github.com/advisories/GHSA-8q59-q68h-6hv4
+ detected_date: Aug 22
+ severity: critical
+ first_patched: '5.4'
- name: Pygments
description: Pygments is a syntax highlighting package written in Python
package_url: https://pypi.org/project/Pygments
@@ -678,6 +722,7 @@ tools:
category: Libraries
sub_category: PyPI Packages
image_url: https://img.stackshare.io/package/pypi/image.png
+ detection_source_url: https://github.com/bariscaglar/azure-cli/blob/dev/src/azure-cli/requirements.py2.Darwin.txt
detection_source: src/azure-cli/requirements.py2.Darwin.txt
last_updated_by: Zim Kalinowski
last_updated_on: 2019-07-16 07:39:05.000000000 Z
@@ -1052,6 +1097,12 @@ tools:
detected_date: Feb 9
severity: high
first_patched: 39.0.1
+ - name: Python Cryptography package vulnerable to Bleichenbacher timing oracle attack
+ cve_id: CVE-2023-50782
+ cve_url: https://github.com/advisories/GHSA-3ww4-gg4f-jr7f
+ detected_date: Feb 6
+ severity: high
+ first_patched: 42.0.0
- name: RSA decryption vulnerable to Bleichenbacher timing vulnerability
cve_id: CVE-2020-25659
cve_url: https://github.com/advisories/GHSA-hggm-jpg3-v476
@@ -1065,12 +1116,12 @@ tools:
detected_date: Feb 8
severity: moderate
first_patched: 39.0.1
- - name: pyca/cryptography's wheels include vulnerable OpenSSL
- cve_id:
- cve_url: https://github.com/advisories/GHSA-jm77-qphf-c4w8
- detected_date: Aug 2
- severity: low
- first_patched: 41.0.3
+ - name: Null pointer dereference in PKCS12 parsing
+ cve_id: CVE-2024-0727
+ cve_url: https://github.com/advisories/GHSA-9v9h-cgj8-h64p
+ detected_date: Feb 17
+ severity: moderate
+ first_patched: 42.0.2
- name: Vulnerable OpenSSL included in cryptography wheels
cve_id:
cve_url: https://github.com/advisories/GHSA-v8gr-m533-ghj9
@@ -1083,6 +1134,12 @@ tools:
detected_date: Jun 3
severity: low
first_patched: 41.0.0
+ - name: pyca/cryptography's wheels include vulnerable OpenSSL
+ cve_id:
+ cve_url: https://github.com/advisories/GHSA-jm77-qphf-c4w8
+ detected_date: Aug 2
+ severity: low
+ first_patched: 41.0.3
- name: enum34
description: Python 3.4 Enum backported to 3.3
package_url: https://pypi.org/project/enum34