security: vulnerability remediation#188
Conversation
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
|
Created a monitoring plan for this PR. What this PR does: Patches a high-severity security vulnerability (GHSA-537c-gmf6-5ccf — vulnerable OpenSSL in Intended effect: No production telemetry signal exists for CLI template usage — this is a template-only change with no deployed service. Confirmation is structural: the lockfile pins Risks:
|
2cf9e9b to
a07f351
Compare
a07f351 to
f6e973f
Compare
Vulnerability Remediation
Fixed
Not Included
Deferred details
Note
Low Risk
Single dependency version pin in a sample template with no runtime or auth logic changes in the diff.
Overview
Pins
browser-usein thepython-buKernel sample template from>=0.11.1to==0.12.3to address GHSA-537c-gmf6-5ccf. No application code changes; only the dependency declaration inpyproject.tomlis updated.Reviewed by Cursor Bugbot for commit f6e973f. Bugbot is set up for automated code reviews on this repo. Configure here.