[jira] [Commented] (RATIS-2380) repeat-test.yaml is vulnerable to parameter injection attacks

Attila Doroszlai (Jira) Mon, 12 Jan 2026 10:09:18 -0800


    [ 
https://issues.apache.org/jira/browse/RATIS-2380?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18051299#comment-18051299
 ]


Attila Doroszlai commented on RATIS-2380:
-----------------------------------------

For the record, the workflow can only be run by committers (and everyone in 
their own fork).

> repeat-test.yaml is vulnerable to parameter injection attacks 
> --------------------------------------------------------------
>
>                 Key: RATIS-2380
>                 URL: https://issues.apache.org/jira/browse/RATIS-2380
>             Project: Ratis
>          Issue Type: Bug
>          Components: build
>            Reporter: Tsz-wo Sze
>            Priority: Major
>
> See https://github.com/apache/ratis/security/code-scanning/8



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Commented] (RATIS-2380) repeat-test.yaml is vulnerable to parameter injection attacks

Reply via email to