Skip to content

Commit

Permalink
dependencies: allowlist CVE-2018-21270 to prevent false positives. (#…
Browse files Browse the repository at this point in the history
…14294)

This does not relate to http-parser.

Signed-off-by: Harvey Tuch <[email protected]>
  • Loading branch information
htuch authored Dec 7, 2020
1 parent cae8eab commit 9e82314
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions tools/dependency/cve_scan.py
Original file line number Diff line number Diff line change
Expand Up @@ -39,6 +39,9 @@
'CVE-2020-8277',
# gRPC issue that only affects Javascript bindings.
'CVE-2020-7768',
# Node.js issue unrelated to http-parser, see
# https://github.com/mhart/StringStream/issues/7.
'CVE-2018-21270',
])

# Subset of CVE fields that are useful below.
Expand Down

0 comments on commit 9e82314

Please sign in to comment.