python monday-code - Jinja dependency

Platform discussions monday apps & integrations

jem.rayfield (Jem,) October 6, 2024, 3:10pm 1

Hello

The monday-code lib (python) is dependent on Jinja that has a CVE

Vulnerability found in jinja2 version 3.1.4

#17 56.67 -> Vulnerability found in jinja2 version 3.1.4
#17 56.67    Vulnerability ID: 70612
#17 56.67    Affected spec: >=0
#17 56.67    ADVISORY: In Jinja2, the from_string function is prone to Server
#17 56.67    Side Template Injection (SSTI) where it takes the "source" parameter as...
#17 56.67    Fixed versions: No known fix
#17 56.67    CVE-2019-8341 is CRITICAL SEVERITY => CVSS v3, BASE
#17 56.67    SCORE 9.8
#17 56.67    For more info

Topic		Replies	Views
Support local development with Python services Feature requests python , apps , developer , monday-code	0	18	September 19, 2024
Monday server stoped responding monday apps & integrations integrations , automations , api , recipe , api-files , 500 , internal_servererror	2	151	July 1, 2024
Deploy to monday code monday apps & integrations integrations , monday-code	1	723	December 25, 2023
{@{message=No query string was present}} 15333503 Platform discussions integrations , automations , api	0	1124	February 27, 2023
Zap Could Not Be Switched On (Zapier Integration) monday apps & integrations integrations	5	602	February 25, 2024

python monday-code - Jinja dependency

Become part of our community groups

Can't find what you're looking for?

Can't find
what you need?

python monday-code - Jinja dependency

Related topics

Become part of our community groups

Can't find what you're looking for?

Can't findwhat you need?

Can't find
what you need?