Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revert "CVE-2007-4559 Patch" #4535

Merged
merged 1 commit into from
Jan 4, 2023
Merged

Revert "CVE-2007-4559 Patch" #4535

merged 1 commit into from
Jan 4, 2023

Conversation

hawflau
Copy link
Contributor

@hawflau hawflau commented Jan 4, 2023

Reverts #4499

@hawflau hawflau requested a review from a team as a code owner January 4, 2023 20:19
@hawflau hawflau requested review from hnnasit and torresxb1 January 4, 2023 20:19
@hawflau hawflau merged commit 1065683 into develop Jan 4, 2023
hnnasit added a commit that referenced this pull request Jan 5, 2023
@hnnasit
Revert "Revert "CVE-2007-4559 Patch (#4499)" (#4535)"
2a7e147 
This reverts commit 1065683.
@hnnasit hnnasit mentioned this pull request Jan 5, 2023
Merged
mildaniel pushed a commit that referenced this pull request Jan 10, 2023
@tam116 @moelasmar
@reaperhulk @dependabot @hawflau @TrellixVulnTeam @mndeveci @hnnasit @qingchm
Support terraform source_paths as list of dicts (#4506)
771b1fb 
* support lists of source_path dicts

* add unit tests for source_path is specified as a list of dicts

* fix: update pyopenssl dependency (#4528)

* chore(deps): bump setuptools from 54.2.0 to 65.5.1 in /requirements (#4518)

Bumps [setuptools](https://github.com/pypa/setuptools) from 54.2.0 to 65.5.1.
- [Release notes](https://github.com/pypa/setuptools/releases)
- [Changelog](https://github.com/pypa/setuptools/blob/main/CHANGES.rst)
- [Commits](pypa/setuptools@v54.2.0...v65.5.1)

---
updated-dependencies:
- dependency-name: setuptools
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* chore: bump version to 1.68.0 (#4532)

Co-authored-by: Lau <[email protected]>

* CVE-2007-4559 Patch (#4499)

* Adding tarfile member sanitization to extractall()

* fix formatting issues

* Refactored extract_tarfile functions and added unit/functional tests

Co-authored-by: Mehmet Nuri Deveci <[email protected]>
Co-authored-by: Mohamed Elasmar <[email protected]>
Co-authored-by: hnnasit <[email protected]>
Co-authored-by: Haresh Nasit <[email protected]>
Co-authored-by: Wing Fung Lau <[email protected]>

* chore: Update development guide to include information on dependency updates (#4476)

* Add in instructions on updating SAMCLI dependencies

* Update the command to be run to write to reproducible linux

* Highlight content using separate sections for requirement files

* Fix typos and reword for better readability

* Update development guide text

* Revert "CVE-2007-4559 Patch (#4499)" (#4535)

This reverts commit 40bd90a.

* chore: change license badge in readme to display GH license (#4538)

* chore: update readme with pypi license

* use gh rather than pypi

* formatting only changes made by terraform fmt command

* add intergration tests

* Re-arrange order of if statements to remove recursion

* remove print statement that was leftover from development

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: Mohamed Elasmar <[email protected]>
Co-authored-by: Paul Kehrer <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Wing Fung Lau <[email protected]>
Co-authored-by: Lau <[email protected]>
Co-authored-by: TrellixVulnTeam <[email protected]>
Co-authored-by: Mehmet Nuri Deveci <[email protected]>
Co-authored-by: hnnasit <[email protected]>
Co-authored-by: Haresh Nasit <[email protected]>
Co-authored-by: Qingchuan Ma <[email protected]>
hnnasit added a commit that referenced this pull request Jan 10, 2023
@hnnasit @hawflau
fix: Add back the fixed CVE-2007-4559 Patch changes (#4539)
f0e5d85 
* Revert "Revert "CVE-2007-4559 Patch (#4499)" (#4535)"

This reverts commit 1065683.

* Changed extract_tarfile input tarfile_path to str file path

* Added type annotation for copy function

Co-authored-by: Wing Fung Lau <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@torresxb1 torresxb1 torresxb1 approved these changes

@hnnasit hnnasit hnnasit approved these changes

Assignees
No one assigned
Labels
area/local/invoke sam local invoke command area/local/start-api sam local start-api command area/local/start-invoke pr/internal
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@hawflau @hnnasit @torresxb1