Skip to content

Commit 4b51b27

Browse files
committed
changelog: add 🚨 emoji for CVE entries
1 parent f975722 commit 4b51b27

File tree

1 file changed

+5
-5
lines changed

1 file changed

+5
-5
lines changed

‎CHANGELOG.md

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -191,7 +191,7 @@
191191

192192
### Changed
193193

194-
- [CVE-2023-40030](https://github.com/rust-lang/cargo/security/advisories/GHSA-wrrj-h57r-vx9p):
194+
- 🚨 [CVE-2023-40030](https://github.com/rust-lang/cargo/security/advisories/GHSA-wrrj-h57r-vx9p):
195195
Malicious dependencies can inject arbitrary JavaScript into cargo-generated timing reports.
196196
To mitigate this, feature name validation check is now turned into a hard error.
197197
The warning was added in Rust 1.49. These extended characters aren't allowed on crates.io,
@@ -326,7 +326,7 @@
326326

327327
### Fixed
328328

329-
- [CVE-2023-38497](https://github.com/rust-lang/cargo/security/advisories/GHSA-j3xp-wfr4-hx87):
329+
- 🚨 [CVE-2023-38497](https://github.com/rust-lang/cargo/security/advisories/GHSA-j3xp-wfr4-hx87):
330330
Cargo 1.71.1 or later respects umask when extracting crate archives. It also
331331
purges the caches it tries to access if they were generated by older Cargo versions.
332332

@@ -1005,7 +1005,7 @@
10051005
## Cargo 1.66.1 (2023-01-10)
10061006

10071007
### Fixed
1008-
- [CVE-2022-46176](https://github.com/rust-lang/cargo/security/advisories/GHSA-r5w3-xm58-jv6j):
1008+
- 🚨 [CVE-2022-46176](https://github.com/rust-lang/cargo/security/advisories/GHSA-r5w3-xm58-jv6j):
10091009
Added validation of SSH host keys for git URLs.
10101010
See [the docs](https://doc.rust-lang.org/cargo/appendix/git-authentication.html#ssh-known-hosts) for more information on how to configure the known host keys.
10111011

@@ -1231,11 +1231,11 @@
12311231

12321232
### Fixed
12331233

1234-
- [CVE-2022-36113](https://github.com/rust-lang/cargo/security/advisories/GHSA-rfj2-q3h3-hm5j):
1234+
- 🚨 [CVE-2022-36113](https://github.com/rust-lang/cargo/security/advisories/GHSA-rfj2-q3h3-hm5j):
12351235
Extracting malicious crates can corrupt arbitrary files.
12361236
[#11089](https://github.com/rust-lang/cargo/pull/11089)
12371237
[#11088](https://github.com/rust-lang/cargo/pull/11088)
1238-
- [CVE-2022-36114](https://github.com/rust-lang/cargo/security/advisories/GHSA-2hvr-h6gw-qrxp):
1238+
- 🚨 [CVE-2022-36114](https://github.com/rust-lang/cargo/security/advisories/GHSA-2hvr-h6gw-qrxp):
12391239
Extracting malicious crates can fill the file system.
12401240
[#11089](https://github.com/rust-lang/cargo/pull/11089)
12411241
[#11088](https://github.com/rust-lang/cargo/pull/11088)

0 commit comments

Comments
 (0)