[GHSA-8398-gmmx-564h] n8n has a Python sandbox escape#7029
[GHSA-8398-gmmx-564h] n8n has a Python sandbox escape#7029c0rydoras wants to merge 1 commit intoc0rydoras/advisory-improvement-7029from
Conversation
|
Hi there @csuermann! A community member has suggested an improvement to your security advisory. If approved, this change will affect the global advisory listed at github.com/advisories. It will not affect the version listed in your project repository. This change will be reviewed by our Security Curation Team. If you have thoughts or feedback, please share them in a comment here! If this PR has already been closed, you can start a new community contribution for this advisory |
github-actions
bot
changed the base branch from
main
to
c0rydoras/advisory-improvement-7029
There was a problem hiding this comment.
Pull request overview
This PR corrects an incorrect commit reference in the GitHub Security Advisory GHSA-8398-gmmx-564h for a Python sandbox escape vulnerability in n8n. The referenced commit was previously pointing to an unrelated fsRealpath commit, which has now been replaced with the correct commit that addresses the Python task runner security issue.
Changes:
- Updated the commit reference URL from the incorrect
5c69970acc7d37049deae67da861f92d2aaa9b03(fsRealpath commit) to the correct8607d372f78c388bb3691d9d5b52af7259ec7b1f(Python sandbox escape fix) - Updated the advisory's
modifiedtimestamp to reflect this correction
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
2 participants
Updates
Comments
fsRealpathcommit has nothing to do with the python task runner)