Ecosyste.ms: Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

actions check-spelling/check-spelling Security Advisories

Critical

GSA_kwCzR0hTQS1nODZnLWNobTgtN3IycM4AAtvI

check-spelling workflow vulnerable to token leakage via symlink attack
Ecosystems: actions
Packages: check-spelling/check-spelling
Source: GitHub Advisory Database
Blast Radius: 1.0
Published: over 1 year ago

Statistics

Advisories: 18,093
Packages: 8,233
Repositories: 1
Ecosystems: 12

Filter by Severity

Moderate 7,794 High 6,269 Critical 2,779 Low 967

Filter by Ecosystem

maven 5,516 packagist 3,716 pypi 3,549 npm 3,530 go 1,878 nuget 1,390 rubygems 812 cargo 773 swift 31 hex 29 actions 16 pub 8

Filter by Package

rlespinasse/github-slug-action 2 tj-actions/verify-changed-files 1 afichet/openexr-viewer 1 tj-actions/branch-names 1 https://github.com/pytorch/pytorch/.github/actions/filter-test-configs 1 Azure/setup-kubectl 1 atlassian/gajira-create 1 check-spelling/check-spelling 1 hashicorp/vault-action 1 kartverket/github-workflows 1 actions/runner 1 gradle/gradle-build-action 1 embano1/wip 1 some-natalie/ghas-to-csv 1 tj-actions/changed-files 1

Filter by Repository

https://github.com/check-spelling/check-spelling 1