>
>> *From: * on behalf of Ron
>> Ratovsky
>> *Reply-To: *"swagger-swaggersocket@googlegroups.com" <
>> swagger-swaggersocket@googlegroups.com>
>> *Date: *Thursday, 4 August 2016 at 08:27
>> *To: *"swagger-swaggersocket@googlegroups.com"
s.com>
> *Date: *Thursday, 4 August 2016 at 08:27
> *To: *"swagger-swaggersocket@googlegroups.com" <
> swagger-swaggersocket@googlegroups.com>
> *Subject: *Re: Vulnerability in handlebars.js version 2.0.0
>
>
>
> We’ve pushed the updated version to master yes
"
Subject: Re: Vulnerability in handlebars.js version 2.0.0
We’ve pushed the updated version to master yesterday, please check it out.
From: on behalf of Vijay
Reply-To: "swagger-swaggersocket@googlegroups.com"
Date: Wednesday, 3 August 2016 at 23:00
To: Swagger
We’ve pushed the updated version to master yesterday, please check it out.
From: on behalf of Vijay
Reply-To: "swagger-swaggersocket@googlegroups.com"
Date: Wednesday, 3 August 2016 at 23:00
To: Swagger
Subject: Re: Vulnerability in handlebars.js version 2.0.0
Hi Tony,
I've not posted on this topic before. Anyways, good to know that it is
being addressed. Any tentative date for this fix?
Thanks,
Vijay
On Wednesday, August 3, 2016 at 8:23:31 PM UTC+5:30, tony tam wrote:
>
> Hi Vijay, I believe you already reached out on this. Expect it will be
> add
Hi Vijay, I believe you already reached out on this. Expect it will be
addressed shortly.
> On Aug 3, 2016, at 3:36 PM, Vijay wrote:
>
> Hi,
>
> Our security team has found vulnerabilities in handlebars.js version 2.0.0
> which is being used by Swagger UI.
> References provided:
> https://ya
Hi,
Our security team has found vulnerabilities in handlebars.js version 2.0.0
which is being used by Swagger UI.
References provided:
https://yahoo-security.tumblr.com/post/128130790295/paranoid-labs-open-source-and-solving-xss-in
https://github.com/wycats/handlebars.js/pull/1083
https://blog.s