Skip to content

PR #4 #2

Sign in to view logs

PR #4

PR #4 #2

GitHub Actions / Trunk Check failed Nov 27, 2023 in 3s

Trunk Check

Checked 2 modified files
✖ 1 new issue

Details

To reproduce and test locally, run:
trunk check

For help resolving these issues, see our docs on running on PRs or debugging Trunk Check

Annotations

Check failure on line 1 in Pipfile.lock

See this annotation in the file changed.

@github-actions github-actions / Trunk Check

osv-scanner(GHSA-gfw2-4jvh-wgfg) 

[new] 'aiohttp' is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP parser in 'AIOHTTP' has numerous problems with header parsing, which could lead to request smuggling. This parser is only used when AIOHTTP_NO_EXTENSIONS is enabled (or not using a prebuilt wheel). These bugs have been addressed in commit `d5c12ba89` which has been included in release version 3.8.6. Users are advised to upgrade. There are no known workarounds for these issues. Current version is vulnerable: 3.8.5. Patch available: upgrade to 3.8.6 or higher.
View more details on GitHub Actions