Package: release.debian.org Severity: normal Tags: bookworm X-Debbugs-Cc: [email protected] Control: affects -1 + src:composer User: [email protected] Usertags: pu
[ This request is similar to #1136642 for trixie-pu ] Hi, As agreed with the security team, I’d like to address a GitHub token leak [CVE-2026-45793] via p-u. The change is just a regex match on code that may not be used outside of GitHub infrastructure, and the testsuite is updated to check for it. [ Checklist ] [x] *all* changes are documented in the d/changelog [x] I reviewed all changes and I approve them [x] attach debdiff against the package in (old)stable [x] the issue is verified as fixed in unstable Cheers, taffit
signature.asc
Description: PGP signature
