pulumi-language-*: Resolve GHSA-mw99-9chc-xw7r

Signed-off-by: Philippe Deslauriers <[email protected]>
sergio-chainguard · Dec 28, 2023 · 07d26a8 · 07d26a8
1 parent 8c4fcd6
commit 07d26a8
Show file tree

Hide file tree

Showing 3 changed files with 30 additions and 3 deletions.
diff --git a/pulumi-language-dotnet.advisories.yaml b/pulumi-language-dotnet.advisories.yaml
@@ -1,4 +1,4 @@
-schema-version: 2.0.1
+schema-version: 2.0.2
 
 package:
   name: pulumi-language-dotnet
@@ -51,3 +51,12 @@ advisories:
         data:
           type: vulnerable-code-not-included-in-package
           note: Only affects Windows
+
+  - id: CVE-2023-49568
+    aliases:
+      - GHSA-mw99-9chc-xw7r
+    events:
+      - timestamp: 2023-12-28T20:38:53Z
+        type: fixed
+        data:
+          fixed-version: 3.59.0-r3
diff --git a/pulumi-language-java.advisories.yaml b/pulumi-language-java.advisories.yaml
@@ -1,4 +1,4 @@
-schema-version: 2.0.1
+schema-version: 2.0.2
 
 package:
   name: pulumi-language-java
@@ -60,3 +60,12 @@ advisories:
         data:
           type: vulnerable-code-not-included-in-package
           note: Only affects Windows
+
+  - id: CVE-2023-49568
+    aliases:
+      - GHSA-mw99-9chc-xw7r
+    events:
+      - timestamp: 2023-12-28T20:39:07Z
+        type: fixed
+        data:
+          fixed-version: 0.9.9-r1
diff --git a/pulumi-language-yaml.advisories.yaml b/pulumi-language-yaml.advisories.yaml
@@ -1,4 +1,4 @@
-schema-version: 2.0.1
+schema-version: 2.0.2
 
 package:
   name: pulumi-language-yaml
@@ -51,3 +51,12 @@ advisories:
         data:
           type: vulnerable-code-not-included-in-package
           note: Only affects Windows
+
+  - id: CVE-2023-49568
+    aliases:
+      - GHSA-mw99-9chc-xw7r
+    events:
+      - timestamp: 2023-12-28T20:39:15Z
+        type: fixed
+        data:
+          fixed-version: 1.4.5-r1