Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

chore: fix spelling errors #2352

Merged
merged 16 commits into from
Jun 20, 2022
Merged

chore: fix spelling errors #2352

Show file tree
Hide file tree
Changes from 1 commit
Commits
Show all changes
16 commits
Select commit Hold shift + click to select a range
0c0fade
spelling: align
jsoref Jun 19, 2022
73867c3
spelling: busybox
jsoref Jun 19, 2022
3fd0389
spelling: community/maintainer
jsoref Jun 19, 2022
87a0980
spelling: example
jsoref Jun 19, 2022
34b0ae6
spelling: factory
jsoref Jun 19, 2022
ad2353f
spelling: github
jsoref Jun 19, 2022
fd154e1
spelling: gitlab
jsoref Jun 19, 2022
3b47499
spelling: kubernetes
jsoref Jun 19, 2022
b056c12
spelling: malicious
jsoref Jun 19, 2022
3c8b03c
spelling: reconciliation
jsoref Jun 19, 2022
1200bd9
spelling: repository
jsoref Jun 19, 2022
97b6b55
spelling: represented
jsoref Jun 19, 2022
a830201
spelling: the
jsoref Jun 19, 2022
ed5921a
spelling: unchanged
jsoref Jun 19, 2022
d788cb8
spelling: vulnerabilities
jsoref Jun 19, 2022
9744886
spelling: vulnerability
jsoref Jun 19, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
spelling: vulnerability 
Signed-off-by: Josh Soref <jsoref@users.noreply.github.com>
  • Loading branch information
@jsoref
jsoref committed Jun 19, 2022
commit 97448863af8d075ff3937e49fd2c682ed17e29b9
2 changes: 1 addition & 1 deletion integration/testdata/fixtures/db/vulnerability.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -887,7 +887,7 @@
V3Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CweIDs:
- CWE-502
Description: A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.
Description: A deserialization of untrusted data vulnerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These CVEs have errors in them. I'm happy to drop the files. If someone knows offhand how to get the CVEs fixed, that'd probably be better for the community overall.

LastModifiedDate: 2020-10-17T12:15:00Z
PublishedDate: 2020-06-19T18:15:00Z
References:
Expand Down
2 changes: 1 addition & 1 deletion integration/testdata/fluentd-gems.json.golden
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -186,7 +186,7 @@
"URL": "https://github.com/advisories?query=type%3Areviewed+ecosystem%3Arubygems"
},
"Title": "rubygem-activesupport: potentially unintended unmarshalling of user-provided objects in MemCacheStore and RedisCacheStore",
"Description": "A deserialization of untrusted data vulnernerability exists in rails \u003c 5.2.4.3, rails \u003c 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.",
"Description": "A deserialization of untrusted data vulnerability exists in rails \u003c 5.2.4.3, rails \u003c 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.",
"Severity": "HIGH",
"CweIDs": [
"CWE-502"
Expand Down