github dependabot alert on py / pytest
Frank Wunderlich
frank-w at public-files.de
Sat Sep 30 15:13:30 CEST 2023
Hi,
dependabot reports a high security issue
https://github.com/frank-w/u-boot/security/dependabot/1
it seems it is not yet fixed in master and next as there py is still in and pytest==6.2.5
I have not yet seen any topics for this...are you aware of this? I know tests are run in
isolated environment through gitlab-pipeline, but maybe this can have still a risk.
regards Frank
More information about the U-Boot
mailing list