You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
vulnerablecode-data/aboutcode-vulnerabilities/1a/VCID-1aqn-grcz-ykgu.yml
vulnerablecode-data/aaboutcode-packages-alpine-0/alpine/apr/VCID-g3j9-zdd6-aaad.yaml
vulnerablecode-data/aaboutcode-packages-alpine-0/alpine/apr/alpine-advancecomp.yaml
Currently, the repository size is less than 300MB as it is just a sample. However, we plan to store millions of files in the future.
GitHub Team's Response to the Bug in Pull Request #3:
you are noticing is due to the huge file tree path in PR which affects only that specific PR and as such it does not present a denial of service vulnerability.
For this, we would recommend you distribute the directories into no more that a few thousand files/subdirectories in a given directory to avoid scenarios like such.
I will share the entire report with you from GitHub after the disclosure.
The text was updated successfully, but these errors were encountered:
file structure Look like this: aboutcode-org/federatedcode#3
GitHub Team's Response to the Bug in Pull Request #3:
you are noticing is due to the huge file tree path in PR which affects only that specific PR and as such it does not present a denial of service vulnerability.
For this, we would recommend you distribute the directories into no more that a few thousand files/subdirectories in a given directory to avoid scenarios like such.
I will share the entire report with you from GitHub after the disclosure.
The text was updated successfully, but these errors were encountered: