Описание
lychee link checking action checks links in Markdown, HTML, and text files using lychee. Prior to version 2.0.2, there is a potential attack of arbitrary code injection vulnerability in lychee-setup of the composite action at action.yml. This issue has been patched in version 2.0.2.
EPSS
Процентиль: 1%
0.00012
Низкий
Дефекты
CWE-94
Связанные уязвимости
github
5 месяцев назад
lychee link checking action affected by arbitrary code injection in composite action
EPSS
Процентиль: 1%
0.00012
Низкий
Дефекты
CWE-94