mirrors/fdroidserver
1
0
Fork 0
mirror of https://github.com/f-droid/fdroidserver.git synced 2025-11-05 06:50:29 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

safety: make CVE-2024-5569 just a warning

Browse source 
We get these packages from Debian, zipp is not used in production, and its
only a DoS.
This commit is contained in:
Hans-Christoph Steiner 2024-08-19 11:59:43 +02:00
parent 3a1bbb54aa
commit ef247bc97a
1 changed files with 3 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
.safety-policy.yml
View file

@ -26,3 +26,6 @@ security:
70612: 70612:
reason: jinja2 is not used by fdroidserver, nor any dependencies I could find via debtree and pipdeptree. reason: jinja2 is not used by fdroidserver, nor any dependencies I could find via debtree and pipdeptree.
expires: '2026-05-31' expires: '2026-05-31'
72132:
reason: We get these packages from Debian, zipp is not used in production, and its only a DoS.
expires: '2026-08-31'