Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[SECURITY VULNERABILITY] In your codebase is a reference of the cdn com polyfill com io service #7986

Closed
PriNova opened this issue Jun 28, 2024 · 0 comments · Fixed by #7988
Closed

[SECURITY VULNERABILITY] In your codebase is a reference of the cdn com polyfill com io service #7986

PriNova opened this issue Jun 28, 2024 · 0 comments · Fixed by #7988
Assignees
@splincode
Labels
P1 This issue has high priority

Comments

@PriNova
Copy link

PriNova commented Jun 28, 2024

taiga-ui/projects/demo/src/index.html

Line 143 in b4ca77b

<script src="https://cdn.polyfill.io/v3/polyfill.min.js?features=Reflect"></script>

This file is using the cdn.polyfill.io service which is known for injecting malicious code

Please use the cloudflare polyfill service

https://x.com/WeldPond/status/1805973940642119900
@PriNova PriNova changed the title [SECURITY VULNERABILITY] In your codebase are some references of the cdn com polyfill com io service [SECURITY VULNERABILITY] In your codebase is a reference of the cdn com polyfill com io service Jun 28, 2024
@splincode splincode mentioned this issue Jun 28, 2024
Merged
@splincode splincode self-assigned this Jun 28, 2024
@splincode splincode added the P1 This issue has high priority label Jun 28, 2024
@splincode splincode linked a pull request Jul 1, 2024 that will close this issue
chore(demo): fix security vulnerability #7988
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@splincode splincode

Labels
P1 This issue has high priority
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

chore(demo): fix security vulnerability taiga-family/taiga-ui
2 participants
@splincode @PriNova