Formed in 2009, the Archive Team (not to be confused with the archive.org Archive-It Team) is a rogue archivist collective dedicated to saving copies of rapidly dying or deleted websites for the sake of history and digital heritage. The group is 100% composed of volunteers and interested parties, and has expanded into a large amount of related projects for saving online and digital history.
[V3] Fix CVE-2022-0764 #12879
Assignees
Labels
good first issue
Good for newcomers
issue: bug
Issue reporting a bug
issue: security
Issue reporting a security problem
severity: low
If the issue only affects a very niche base of users and an easily implemented workaround can solve
source: core:strapi
Source is core/strapi package
status: confirmed
Confirmed by a Strapi Team member or multiple community members
Comments
derrickmehaffy
added
issue: bug
derrickmehaffy
added this to To be reviewed (Open)
in Developer Experience
via automation
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Bug report
Describe the bug
There is a security vulnerability in Strapi that prevents our deployment pipeline from running. There is already a fix implemented for v4.x, but upgrading is not on our short-term road map for now. It seems like the fix from v4 can be copied to v3 1 on 1, but since I've never contributed to this repository I was hoping there was someone willing to back-port the fix to v3.
Other information
The text was updated successfully, but these errors were encountered: