Title: chore: ignore CVE-2026-41305 (postcss build-time XSS) in Trivy by brendan-kellam · Pull Request #1288 · sourcebot-dev/sourcebot · GitHub
Open Graph Title: chore: ignore CVE-2026-41305 (postcss build-time XSS) in Trivy by brendan-kellam · Pull Request #1288 · sourcebot-dev/sourcebot
X Title: chore: ignore CVE-2026-41305 (postcss build-time XSS) in Trivy by brendan-kellam · Pull Request #1288 · sourcebot-dev/sourcebot
Description: Sourcebot is a self-hosted tool that helps humans and agents understand your codebase. - chore: ignore CVE-2026-41305 (postcss build-time XSS) in Trivy by brendan-kellam · Pull Request #1288 · sourcebot-dev/sourcebot
Open Graph Description: Fixes SOU-995 Suppresses CVE-2026-41305 (PostCSS XSS via unescaped </style> in CSS stringify output) via a root .trivyignore, auto-detected by Trivy in the vulnerability-triage workflow. post...
X Description: Fixes SOU-995 Suppresses CVE-2026-41305 (PostCSS XSS via unescaped </style> in CSS stringify output) via a root .trivyignore, auto-detected by Trivy in the vulnerability-triage workfl...
Opengraph URL: https://github.com/sourcebot-dev/sourcebot/pull/1288
X: @github
Domain: github.com
| route-pattern | /_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format) |
| route-controller | voltron_pull_requests_fragments |
| route-action | pull_request_layout |
| fetch-nonce | v2:db5f58d3-1511-7951-bec2-37af6c76dbad |
| current-catalog-service-hash | ae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b |
| request-id | 961C:A825:DFA193:145446D:6A4E2BC3 |
| html-safe-nonce | 8840e29c1cf57f1a24a645a0d2befbebffce98441051a1d046da8f6aac36ad49 |
| visitor-payload | eyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiI5NjFDOkE4MjU6REZBMTkzOjE0NTQ0NkQ6NkE0RTJCQzMiLCJ2aXNpdG9yX2lkIjoiMTE1NDU3Nzc3NDYyODcxMTM2MyIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9 |
| visitor-hmac | c871a02f4ed9ca40607471de10dad2ebf89ff272f464fa4cdf30502adfe30311 |
| hovercard-subject-tag | pull_request:3827583339 |
| github-keyboard-shortcuts | repository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot |
| google-site-verification | Apib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I |
| octolytics-url | https://collector.github.com/github/collect |
| analytics-location | / |
| fb:app_id | 1401488693436528 |
| apple-itunes-app | app-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/sourcebot-dev/sourcebot/1288/pull_request_layout |
| twitter:image | https://opengraph.githubassets.com/13217d5b395ae5462f2a9d9df26489095a77de4042da1dd21426439d43a28fa9/sourcebot-dev/sourcebot/pull/1288 |
| twitter:card | summary_large_image |
| og:image | https://opengraph.githubassets.com/13217d5b395ae5462f2a9d9df26489095a77de4042da1dd21426439d43a28fa9/sourcebot-dev/sourcebot/pull/1288 |
| og:image:alt | Fixes SOU-995 Suppresses CVE-2026-41305 (PostCSS XSS via unescaped </style> in CSS stringify output) via a root .trivyignore, auto-detected by Trivy in the vulnerability-triage workflow. post... |
| og:image:width | 1200 |
| og:image:height | 600 |
| og:site_name | GitHub |
| og:type | object |
| og:author:username | brendan-kellam |
| hostname | github.com |
| expected-hostname | github.com |
| None | 030096ee0db095447bfe77409d33bfac127ca7128299c58deef27c52eaa1b1f0 |
| turbo-cache-control | no-cache |
| go-import | github.com/sourcebot-dev/sourcebot git https://github.com/sourcebot-dev/sourcebot.git |
| octolytics-dimension-user_id | 135396723 |
| octolytics-dimension-user_login | sourcebot-dev |
| octolytics-dimension-repository_id | 846729675 |
| octolytics-dimension-repository_nwo | sourcebot-dev/sourcebot |
| octolytics-dimension-repository_public | true |
| octolytics-dimension-repository_is_fork | false |
| octolytics-dimension-repository_network_root_id | 846729675 |
| octolytics-dimension-repository_network_root_nwo | sourcebot-dev/sourcebot |
| turbo-body-classes | logged-out env-production page-responsive |
| disable-turbo | false |
| browser-stats-url | https://api.github.com/_private/browser/stats |
| browser-errors-url | https://api.github.com/_private/browser/errors |
| release | d9dd20d38f8ae3c4cb6b597807431db300d0bd2a |
| ui-target | full |
| theme-color | #1e2327 |
| color-scheme | light dark |
Links:
Viewport: width=device-width