Skip to content

Fix vulnerability in Regex#13

Merged
WindzCUHK merged 29 commits intomasterfrom
fix-vulnerability-in-regex
Apr 20, 2023
Merged

Fix vulnerability in Regex#13
WindzCUHK merged 29 commits intomasterfrom
fix-vulnerability-in-regex

Conversation

@mlajkim
Copy link
Copy Markdown
Contributor

@mlajkim mlajkim commented Apr 17, 2023
edited by WindzCUHK
Loading

Description

  1. destructive changes on black_list/white_list/admin_access_list
    • from regex to wildcard
  2. docker image
    • remove upx
    • use non-root user

Type of change

  • Bug fix
  • New feature
  • Refactoring (no functional changes, no api changes)
  • Non-code changes (update documentation, pipeline, etc.)

Flags

  • Breaks backward compatibility
  • Requires a documentation update
  • Has untestable code

Related issue/PR

Checklist

  • Followed the guidelines in the CONTRIBUTING document
  • Added prefix [skip ci]/[ci skip]/[no ci]/[skip actions]/[actions skip] in the PR title if necessary
  • Tested and linted the code
  • Commented the code
  • Made corresponding changes to the documentation
  • Passed all pipeline checking

Checklist for maintainer

  • Use Squash and merge
  • Double-confirm the merge message has prefix [skip ci]/[ci skip]/[no ci]/[skip actions]/[actions skip]
  • Delete the branch after merge

mlajkim
mlajkim commented Apr 20, 2023
View reviewed changes
WindzCUHK
WindzCUHK reviewed Apr 20, 2023
View reviewed changes
mlajkim and others added 12 commits April 20, 2023 15:47
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
800d015 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
e6e2ebc 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
78ed811 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
325c17b 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
95756d7 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim
refactor: redundant comments removed
dff0a1e
@mlajkim @WindzCUHK
feat: apply given comment from wfan
06d6ac1 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim @WindzCUHK
feat: apply given comment from wfan
7844449 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim
fix: message
1e3ab8d
@mlajkim
fix: message
72113d1
@mlajkim @WindzCUHK
feat: WindzCHUK advice applied
5cc2438 
Co-authored-by: Windz <WindzCUHK@users.noreply.github.com>
Signed-off-by: Aaron Jeongwoo Kim <53258958+mlajkim@users.noreply.github.com>
@mlajkim
fix: debug logger
40a26e6
WindzCUHK
WindzCUHK reviewed Apr 20, 2023
View reviewed changes
@WindzCUHK WindzCUHK merged commit f76ec3d into master Apr 20, 2023
@WindzCUHK WindzCUHK deleted the fix-vulnerability-in-regex branch April 20, 2023 09:09
@WindzCUHK
Copy link
Copy Markdown
Contributor

WindzCUHK commented Apr 20, 2023

created issue for updating doc: #17

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@WindzCUHK WindzCUHK WindzCUHK approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mlajkim @WindzCUHK