René's URL Explorer Experiment


Title: Fix CVE-2023-41040 by facutuesca · Pull Request #1644 · gitpython-developers/GitPython · GitHub

Open Graph Title: Fix CVE-2023-41040 by facutuesca · Pull Request #1644 · gitpython-developers/GitPython

X Title: Fix CVE-2023-41040 by facutuesca · Pull Request #1644 · gitpython-developers/GitPython

Description: This change adds a check during reference resolving to see if the requested reference is inside the current repository folder. If it's ouside, it raises an exception. This fixes CVE-2023-41040, whi...

Open Graph Description: This change adds a check during reference resolving to see if the requested reference is inside the current repository folder. If it's ouside, it raises an exception. This fixes CVE-2023-41040,...

X Description: This change adds a check during reference resolving to see if the requested reference is inside the current repository folder. If it's ouside, it raises an exception. This fixes CVE-2023-41...

Opengraph URL: https://github.com/gitpython-developers/GitPython/pull/1644

X: @github

direct link

Domain: redirect.github.com

route-pattern/_view_fragments/voltron/pull_requests/show/:user_id/:repository/:id/pull_request_layout(.:format)
route-controllervoltron_pull_requests_fragments
route-actionpull_request_layout
fetch-noncev2:cf07d034-a164-b029-eb9a-f1aa96966def
current-catalog-service-hashae870bc5e265a340912cde392f23dad3671a0a881730ffdadd82f2f57d81641b
request-idAD86:3852BB:2258B9F:303F6CA:6970F09C
html-safe-nonce1b7a630fdc14fbcbc1586ec8b8c4da88dbc0c48b9d3ae00318f37ad32e80c577
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJBRDg2OjM4NTJCQjoyMjU4QjlGOjMwM0Y2Q0E6Njk3MEYwOUMiLCJ2aXNpdG9yX2lkIjoiNzI3MTg3MTc1OTgzOTcxOTU4MCIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmacde7395af62a5bd0e1270354dfe0bea47a42f5c8419aa954993b7f0e7a43da8e3
hovercard-subject-tagpull_request:1502318148
github-keyboard-shortcutsrepository,pull-request-list,pull-request-conversation,pull-request-files-changed,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location///voltron/pull_requests_fragments/pull_request_layout
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/_view_fragments/voltron/pull_requests/show/gitpython-developers/GitPython/1644/pull_request_layout
twitter:imagehttps://opengraph.githubassets.com/5bb6c1b2f7dbaab6e8512e166ed2faa9fe7518a4680713c886af43c5a49da855/gitpython-developers/GitPython/pull/1644
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/5bb6c1b2f7dbaab6e8512e166ed2faa9fe7518a4680713c886af43c5a49da855/gitpython-developers/GitPython/pull/1644
og:image:altThis change adds a check during reference resolving to see if the requested reference is inside the current repository folder. If it's ouside, it raises an exception. This fixes CVE-2023-41040,...
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
og:author:usernamefacutuesca
hostnamegithub.com
expected-hostnamegithub.com
Noneb6ca3cb96fa07d8a62b95d681f9dc8fffb49a43f4fea2a5bcac6d8f5107cbf4e
turbo-cache-controlno-preview
go-importgithub.com/gitpython-developers/GitPython git https://github.com/gitpython-developers/GitPython.git
octolytics-dimension-user_id503709
octolytics-dimension-user_logingitpython-developers
octolytics-dimension-repository_id1126087
octolytics-dimension-repository_nwogitpython-developers/GitPython
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forkfalse
octolytics-dimension-repository_network_root_id1126087
octolytics-dimension-repository_network_root_nwogitpython-developers/GitPython
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
released2448578278810c7bf94faa67651ef5adb1abfde
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://redirect.github.com/gitpython-developers/GitPython/pull/1644#start-of-content
https://redirect.github.com/
Sign in https://redirect.github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgitpython-developers%2FGitPython%2Fpull%2F1644
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://redirect.github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgitpython-developers%2FGitPython%2Fpull%2F1644
Sign up https://redirect.github.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E%2Fvoltron%2Fpull_requests_fragments%2Fpull_request_layout&source=header-repo&source_repo=gitpython-developers%2FGitPython
Reloadhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
Reloadhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
Reloadhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
gitpython-developers https://redirect.github.com/gitpython-developers
GitPythonhttps://redirect.github.com/gitpython-developers/GitPython
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
Notifications https://redirect.github.com/login?return_to=%2Fgitpython-developers%2FGitPython
Fork 964 https://redirect.github.com/login?return_to=%2Fgitpython-developers%2FGitPython
Star 5k https://redirect.github.com/login?return_to=%2Fgitpython-developers%2FGitPython
Code https://redirect.github.com/gitpython-developers/GitPython
Issues 170 https://redirect.github.com/gitpython-developers/GitPython/issues
Pull requests 8 https://redirect.github.com/gitpython-developers/GitPython/pulls
Discussions https://redirect.github.com/gitpython-developers/GitPython/discussions
Actions https://redirect.github.com/gitpython-developers/GitPython/actions
Security Uh oh! There was an error while loading. Please reload this page. https://redirect.github.com/gitpython-developers/GitPython/security
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
Insights https://redirect.github.com/gitpython-developers/GitPython/pulse
Code https://redirect.github.com/gitpython-developers/GitPython
Issues https://redirect.github.com/gitpython-developers/GitPython/issues
Pull requests https://redirect.github.com/gitpython-developers/GitPython/pulls
Discussions https://redirect.github.com/gitpython-developers/GitPython/discussions
Actions https://redirect.github.com/gitpython-developers/GitPython/actions
Security https://redirect.github.com/gitpython-developers/GitPython/security
Insights https://redirect.github.com/gitpython-developers/GitPython/pulse
Sign up for GitHub https://redirect.github.com/signup?return_to=%2Fgitpython-developers%2FGitPython%2Fissues%2Fnew%2Fchoose
terms of servicehttps://docs.github.com/terms
privacy statementhttps://docs.github.com/privacy
Sign inhttps://redirect.github.com/login?return_to=%2Fgitpython-developers%2FGitPython%2Fissues%2Fnew%2Fchoose
Jump to bottomhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644#issue-comment-box
Byronhttps://redirect.github.com/Byron
gitpython-developers:mainhttps://redirect.github.com/gitpython-developers/GitPython/tree/main
trail-of-forks:fix-cve-2023-41040https://redirect.github.com/trail-of-forks/GitPython/tree/fix-cve-2023-41040
Fix CVE-2023-41040 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#top
Byronhttps://redirect.github.com/Byron
gitpython-developers:mainhttps://redirect.github.com/gitpython-developers/GitPython/tree/main
trail-of-forks:fix-cve-2023-41040https://redirect.github.com/trail-of-forks/GitPython/tree/fix-cve-2023-41040
Conversation 26 https://redirect.github.com/gitpython-developers/GitPython/pull/1644
Commits 2 https://redirect.github.com/gitpython-developers/GitPython/pull/1644/commits
Checks 0 https://redirect.github.com/gitpython-developers/GitPython/pull/1644/checks
Files changed https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://github.co/hiddenchars
https://redirect.github.com/gitpython-developers/GitPython/pull/{{ revealButtonHref }}
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issue-1881420859
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
#1638https://github.com/gitpython-developers/GitPython/issues/1638
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-issue-1876081305
CVE-2023-41040: Blind local file inclusion #1638 https://redirect.github.com/gitpython-developers/GitPython/issues/1638
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
force-pushedhttps://redirect.github.com/gitpython-developers/GitPython/compare/b2d3d01c8b2eac23ad8f4bef5f69f6953b66afbc..a56113e7eb40c6c793661a8e9b567a1fa3d7f6b8
b2d3d01https://redirect.github.com/gitpython-developers/GitPython/commit/b2d3d01c8b2eac23ad8f4bef5f69f6953b66afbc
a56113ehttps://redirect.github.com/gitpython-developers/GitPython/commit/a56113e7eb40c6c793661a8e9b567a1fa3d7f6b8
Compare https://redirect.github.com/gitpython-developers/GitPython/compare/b2d3d01c8b2eac23ad8f4bef5f69f6953b66afbc..a56113e7eb40c6c793661a8e9b567a1fa3d7f6b8
September 5, 2023 08:09https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10280348866
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 5, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1610669989
View reviewed changes https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files
Byronhttps://redirect.github.com/Byron
https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1610669989
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1706481076
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Byronhttps://redirect.github.com/Byron
September 5, 2023 11:55https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10282712777
https://redirect.github.com/stsewd
stsewdhttps://redirect.github.com/stsewd
Sep 5, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1611568084
View reviewed changes https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files
git/refs/symbolic.pyhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/files#diff-72d42177f0e8535634711b5de0390d5bc81dbedab1fbac6547e5b9ab3b03eb9a
stsewdhttps://redirect.github.com/stsewd
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316172859
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316205552
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
stsewdhttps://redirect.github.com/stsewd
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316212422
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316221330
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
facutuescahttps://redirect.github.com/facutuesca
Sep 5, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316235912
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
emptyhttps://redirect.github.com/empty
September 6, 2023 05:32https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10291237775
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 6, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1612512012
View reviewed changes https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files
Byronhttps://redirect.github.com/Byron
https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1612512012
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
git/refs/symbolic.pyhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/files#diff-72d42177f0e8535634711b5de0390d5bc81dbedab1fbac6547e5b9ab3b03eb9a
Byronhttps://redirect.github.com/Byron
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316759264
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
facutuescahttps://redirect.github.com/facutuesca
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1316792194
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
test/test_refs.pyhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/files#diff-0d8f1dff061a372fdf4946776e8277a271774b10c1684d1c28c1abd030340d0c
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
force-pushedhttps://redirect.github.com/gitpython-developers/GitPython/compare/a96ba17c5546a28ef40c196ebd6206705190d169..5f2caa5bfe5f5b2e85feac19d294622b7a568ef0
a96ba17https://redirect.github.com/gitpython-developers/GitPython/commit/a96ba17c5546a28ef40c196ebd6206705190d169
5f2caa5https://redirect.github.com/gitpython-developers/GitPython/commit/5f2caa5bfe5f5b2e85feac19d294622b7a568ef0
Compare https://redirect.github.com/gitpython-developers/GitPython/compare/a96ba17c5546a28ef40c196ebd6206705190d169..5f2caa5bfe5f5b2e85feac19d294622b7a568ef0
September 6, 2023 06:15https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10291558909
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Byronhttps://redirect.github.com/Byron
September 6, 2023 06:25https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10291635499
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 6, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1614123685
View reviewed changes https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files
git/refs/symbolic.pyhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/files#diff-72d42177f0e8535634711b5de0390d5bc81dbedab1fbac6547e5b9ab3b03eb9a
Byronhttps://redirect.github.com/Byron
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1317769954
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
this validation code as referencehttps://github.com/Byron/gitoxide/blob/dff90531e49a153a38c1cb01c8fdc7ff9bad7e81/gix-validate/src/tag.rs#L48
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
facutuescahttps://redirect.github.com/facutuesca
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#discussion_r1317797002
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
v3.1.35 - Bugfixeshttps://redirect.github.com/gitpython-developers/GitPython/milestone/65
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10300056587
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
waiting for feedback https://redirect.github.com/gitpython-developers/GitPython/issues?q=state%3Aopen%20label%3A%22waiting%20for%20feedback%22
Sep 6, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10300057350
facutuescahttps://redirect.github.com/facutuesca
September 6, 2023 22:19https://redirect.github.com/gitpython-developers/GitPython/pull/1644#commits-pushed-64ebb9f
https://redirect.github.com/facutuesca
Fixhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/commits/64ebb9fcdfbe48d5d61141a557691fd91f1e88d6
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
64ebb9fhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/commits/64ebb9fcdfbe48d5d61141a557691fd91f1e88d6
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
https://redirect.github.com/facutuesca
Add test forhttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/commits/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
65b8c6ahttps://redirect.github.com/gitpython-developers/GitPython/pull/1644/commits/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
force-pushedhttps://redirect.github.com/gitpython-developers/GitPython/compare/5f2caa5bfe5f5b2e85feac19d294622b7a568ef0..65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
5f2caa5https://redirect.github.com/gitpython-developers/GitPython/commit/5f2caa5bfe5f5b2e85feac19d294622b7a568ef0
65b8c6ahttps://redirect.github.com/gitpython-developers/GitPython/commit/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
Compare https://redirect.github.com/gitpython-developers/GitPython/compare/5f2caa5bfe5f5b2e85feac19d294622b7a568ef0..65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
September 6, 2023 20:22https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10300214301
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Byronhttps://redirect.github.com/Byron
September 6, 2023 20:27https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10300255670
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
waiting for feedback https://redirect.github.com/gitpython-developers/GitPython/issues?q=state%3Aopen%20label%3A%22waiting%20for%20feedback%22
Sep 7, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10303025429
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 7, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1614625943
View reviewed changes https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
Byronhttps://redirect.github.com/Byron
https://redirect.github.com/gitpython-developers/GitPython/pull/1644#pullrequestreview-1614625943
Learn morehttps://docs.github.com/articles/managing-disruptive-comments/#hiding-a-comment
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
74e55eehttps://redirect.github.com/gitpython-developers/GitPython/commit/74e55ee4544867e1bd976b7df5a45869ee397b0b
Sep 7, 2023https://github.com/gitpython-developers/GitPython/pull/1644#event-10303030204
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
September 7, 2023 06:26https://redirect.github.com/gitpython-developers/GitPython/pull/1644#event-10303254657
https://redirect.github.com/EliahKagan
EliahKaganhttps://redirect.github.com/EliahKagan
Sep 7, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-pullrequest-1873704556
Fix CVE-2023-40590 #1636 https://redirect.github.com/gitpython-developers/GitPython/pull/1636
bmwiedemannhttps://redirect.github.com/bmwiedemann
Sep 7, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-commit-1e29cc6
https://redirect.github.com/bmwiedemann
Update python-GitPython to version 3.1.34.1693646983.2a2ae77 / rev 29…https://redirect.github.com/bmwiedemann/openSUSE/commit/1e29cc618f352d22c27509c492ec4930d19ee456
1e29cc6https://redirect.github.com/bmwiedemann/openSUSE/commit/1e29cc618f352d22c27509c492ec4930d19ee456
https://build.opensuse.org/request/show/1109413https://build.opensuse.org/request/show/1109413
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
gitpython-developers/GitPython#1644https://github.com/gitpython-developers/GitPython/pull/1644
CVE-2023-40590https://github.com/advisories/GHSA-wfm5-v35h-vwf4
CVE-2023-40590https://github.com/advisories/GHSA-wfm5-v35h-vwf4
renovatehttps://redirect.github.com/apps/renovate
Sep 8, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-commit-063140a
https://redirect.github.com/marketplace/renovate
Update dependency GitPython to v3.1.35 (https://redirect.github.com/allenporter/flux-local/commit/063140a6a848e959baa608a64fa1b7c9824303e6
#325https://github.com/allenporter/flux-local/pull/325
)https://redirect.github.com/allenporter/flux-local/commit/063140a6a848e959baa608a64fa1b7c9824303e6
063140ahttps://redirect.github.com/allenporter/flux-local/commit/063140a6a848e959baa608a64fa1b7c9824303e6
https://app.renovatebot.com/images/banner.svg)](https://renovatebot.comhttps://app.renovatebot.com/images/banner.svg)](https://renovatebot.com
https://togithub.com/gitpython-developers/GitPythonhttps://togithub.com/gitpython-developers/GitPython
https://developer.mend.io/api/mc/badges/age/pypi/GitPython/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/https://developer.mend.io/api/mc/badges/age/pypi/GitPython/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/
https://developer.mend.io/api/mc/badges/adoption/pypi/GitPython/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/https://developer.mend.io/api/mc/badges/adoption/pypi/GitPython/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/
https://developer.mend.io/api/mc/badges/compatibility/pypi/GitPython/3.1.34/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/https://developer.mend.io/api/mc/badges/compatibility/pypi/GitPython/3.1.34/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/
https://developer.mend.io/api/mc/badges/confidence/pypi/GitPython/3.1.34/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/https://developer.mend.io/api/mc/badges/confidence/pypi/GitPython/3.1.34/3.1.35?slim=true)](https://docs.renovatebot.com/merge-confidence/
https://togithub.com/gitpython-developers/GitPython/releases/tag/3.1.35https://togithub.com/gitpython-developers/GitPython/releases/tag/3.1.35
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
https://togithub.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35https://togithub.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35
https://togithub.com/dependabothttps://togithub.com/dependabot
https://github.com/gitpython-developers/GitPython/pull/1643](https://togithub.com/gitpython-developers/GitPython/pull/1643)https://github.com/gitpython-developers/GitPython/pull/1643](https://togithub.com/gitpython-developers/GitPython/pull/1643)
https://togithub.com/CosmosAtlashttps://togithub.com/CosmosAtlas
https://github.com/gitpython-developers/GitPython/pull/1645](https://togithub.com/gitpython-developers/GitPython/pull/1645)https://github.com/gitpython-developers/GitPython/pull/1645](https://togithub.com/gitpython-developers/GitPython/pull/1645)
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
https://togithub.com/facutuescahttps://togithub.com/facutuesca
https://github.com/gitpython-developers/GitPython/pull/1644](https://togithub.com/gitpython-developers/GitPython/pull/1644)https://github.com/gitpython-developers/GitPython/pull/1644](https://togithub.com/gitpython-developers/GitPython/pull/1644)
https://togithub.com/EliahKaganhttps://togithub.com/EliahKagan
https://github.com/gitpython-developers/GitPython/pull/1648](https://togithub.com/gitpython-developers/GitPython/pull/1648)https://github.com/gitpython-developers/GitPython/pull/1648](https://togithub.com/gitpython-developers/GitPython/pull/1648)
https://togithub.com/gitpython-developers/GitPython/issues/1645https://togithub.com/gitpython-developers/GitPython/issues/1645
https://togithub.com/CosmosAtlashttps://togithub.com/CosmosAtlas
https://github.com/gitpython-developers/GitPython/pull/1647](https://togithub.com/gitpython-developers/GitPython/pull/1647)https://github.com/gitpython-developers/GitPython/pull/1647](https://togithub.com/gitpython-developers/GitPython/pull/1647)
https://togithub.com/EliahKaganhttps://togithub.com/EliahKagan
https://github.com/gitpython-developers/GitPython/pull/1650](https://togithub.com/gitpython-developers/GitPython/pull/1650)https://github.com/gitpython-developers/GitPython/pull/1650](https://togithub.com/gitpython-developers/GitPython/pull/1650)
https://togithub.com/CosmosAtlashttps://togithub.com/CosmosAtlas
https://github.com/gitpython-developers/GitPython/pull/1645](https://togithub.com/gitpython-developers/GitPython/pull/1645)https://github.com/gitpython-developers/GitPython/pull/1645](https://togithub.com/gitpython-developers/GitPython/pull/1645)
https://togithub.com/facutuescahttps://togithub.com/facutuesca
https://github.com/gitpython-developers/GitPython/pull/1644](https://togithub.com/gitpython-developers/GitPython/pull/1644)https://github.com/gitpython-developers/GitPython/pull/1644](https://togithub.com/gitpython-developers/GitPython/pull/1644)
gitpython-developers/GitPython@3.1.34...3.1.35https://github.com/gitpython-developers/GitPython/compare/3.1.34...3.1.35
https://www.mend.io/free-developer-tools/renovate/https://www.mend.io/free-developer-tools/renovate/
https://developer.mend.io/github/allenporter/flux-localhttps://developer.mend.io/github/allenporter/flux-local
otc-zuulhttps://redirect.github.com/apps/otc-zuul
Sep 11, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-commit-0eef04a
https://redirect.github.com/apps/dependabot
Bump gitpython from 3.1.32 to 3.1.35 (https://redirect.github.com/opentelekomcloud-infra/eyes_on_docs/commit/0eef04a854dc0071e7991666c264bcdb00fa3c75
#32https://github.com/opentelekomcloud-infra/eyes_on_docs/pull/32
)https://redirect.github.com/opentelekomcloud-infra/eyes_on_docs/commit/0eef04a854dc0071e7991666c264bcdb00fa3c75
0eef04ahttps://redirect.github.com/opentelekomcloud-infra/eyes_on_docs/commit/0eef04a854dc0071e7991666c264bcdb00fa3c75
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
gitpython-developers/GitPython#1643https://github.com/gitpython-developers/GitPython/pull/1643
gitpython-developers/GitPython#1645https://github.com/gitpython-developers/GitPython/pull/1645
CVE-2023-41040https://github.com/advisories/GHSA-cwvm-v4w8-q58c
gitpython-developers/GitPython#1644https://github.com/gitpython-developers/GitPython/pull/1644
gitpython-developers/GitPython#1648https://github.com/gitpython-developers/GitPython/pull/1648
gitpython-developers/GitPython#1647https://github.com/gitpython-developers/GitPython/pull/1647
gitpython-developers/GitPython#1650https://github.com/gitpython-developers/GitPython/pull/1650
gitpython-developers/GitPython#1645https://github.com/gitpython-developers/GitPython/pull/1645
gitpython-developers/GitPython#1644https://github.com/gitpython-developers/GitPython/pull/1644
gitpython-developers/GitPython#1639https://github.com/gitpython-developers/GitPython/pull/1639
gitpython-developers/GitPython#1639https://github.com/gitpython-developers/GitPython/pull/1639
gitpython-developers/GitPython#1608https://github.com/gitpython-developers/GitPython/pull/1608
gitpython-developers/GitPython#1617https://github.com/gitpython-developers/GitPython/pull/1617
gitpython-developers/GitPython#1618https://github.com/gitpython-developers/GitPython/pull/1618
gitpython-developers/GitPython#1634https://github.com/gitpython-developers/GitPython/pull/1634
CVE-2023-40590https://github.com/advisories/GHSA-wfm5-v35h-vwf4
gitpython-developers/GitPython#1636https://github.com/gitpython-developers/GitPython/pull/1636
gitpython-developers/GitPython#1619https://github.com/gitpython-developers/GitPython/pull/1619
gitpython-developers/GitPython#1608https://github.com/gitpython-developers/GitPython/pull/1608
gitpython-developers/GitPython#1617https://github.com/gitpython-developers/GitPython/pull/1617
gitpython-developers/GitPython#1636https://github.com/gitpython-developers/GitPython/pull/1636
gitpython-developers/GitPython#1619https://github.com/gitpython-developers/GitPython/pull/1619
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
@dependabothttps://github.com/dependabot
https://redirect.github.com/doc-sheet
doc-sheethttps://redirect.github.com/doc-sheet
Sep 19, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1726331886
@facutuescahttps://github.com/facutuesca
@Byronhttps://github.com/Byron
exploit ithttps://github.com/gitpython-developers/GitPython/blob/1256b1640fe9636d71acff969443d77ae3ff6b84/git/refs/symbolic.py#L176
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 19, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1726404448
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
@facutuescahttps://github.com/facutuesca
@Byronhttps://github.com/Byron
exploit ithttps://github.com/gitpython-developers/GitPython/blob/1256b1640fe9636d71acff969443d77ae3ff6b84/git/refs/symbolic.py#L176
@doc-sheethttps://github.com/doc-sheet
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 20, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1726999128
@EliahKaganhttps://github.com/EliahKagan
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/EliahKagan
EliahKaganhttps://redirect.github.com/EliahKagan
Sep 20, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1727150543
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
GitPython/git/refs/symbolic.pyhttps://github.com/gitpython-developers/GitPython/blob/a5a646494393478c65f26cd3a921f3505219d3e1/git/refs/symbolic.py#L171-L172
a5a6464https://redirect.github.com/gitpython-developers/GitPython/commit/a5a646494393478c65f26cd3a921f3505219d3e1
this pagehttps://learn.microsoft.com/en-us/windows/win32/fileio/changing-the-current-directory
doc-sheet pointed outhttps://github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1726331886
some codehttps://github.com/dmvassallo/EmbeddingScratchwork/blob/9fb8b1906a7372263577a97dc7dac8615dc5f5ed/embed/demos/usc.py#L78-L89
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/doc-sheet
doc-sheethttps://redirect.github.com/doc-sheet
Sep 20, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1727151559
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/doc-sheet
doc-sheethttps://redirect.github.com/doc-sheet
Sep 20, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1727215704
cross-platform solutionhttps://security.openstack.org/guidelines/dg_using-file-paths.html#correct
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 20, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1727304200
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
@EliahKaganhttps://github.com/EliahKagan
@doc-sheethttps://github.com/doc-sheet
@Byronhttps://github.com/Byron
https://git-scm.com/docs/git-check-ref-format/https://git-scm.com/docs/git-check-ref-format/
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/Byron
Byronhttps://redirect.github.com/Byron
Sep 21, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1728908720
GitPython/git/refs/symbolic.pyhttps://github.com/gitpython-developers/GitPython/blob/a5a646494393478c65f26cd3a921f3505219d3e1/git/refs/symbolic.py#L171-L172
a5a6464https://redirect.github.com/gitpython-developers/GitPython/commit/a5a646494393478c65f26cd3a921f3505219d3e1
https://git-scm.com/docs/git-check-ref-format/https://git-scm.com/docs/git-check-ref-format/
herehttps://github.com/Byron/gitoxide/blob/a9da3f84b979aa25225a819428b85bff6290da9b/gix-validate/src/reference.rs#L47
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 21, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1729265117
@Byronhttps://github.com/Byron
@doc-sheethttps://github.com/doc-sheet
@EliahKaganhttps://github.com/EliahKagan
#1672https://github.com/gitpython-developers/GitPython/pull/1672
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
facutuescahttps://redirect.github.com/facutuesca
Sep 21, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-pullrequest-1906595336
Add more checks for the validity of refnames #1672 https://redirect.github.com/gitpython-developers/GitPython/pull/1672
https://redirect.github.com/chkno
chknohttps://redirect.github.com/chkno
Sep 21, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-pullrequest-1907475322
python3Packages.gitpython: 3.1.33 -> 3.1.37 NixOS/nixpkgs#256546 https://redirect.github.com/NixOS/nixpkgs/pull/256546
https://redirect.github.com/EliahKagan
EliahKaganhttps://redirect.github.com/EliahKagan
Sep 22, 2023https://redirect.github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1730983361
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
#1644 (comment)https://github.com/gitpython-developers/GitPython/pull/1644#issuecomment-1726331886
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/EliahKagan
EliahKaganhttps://redirect.github.com/EliahKagan
Nov 14, 2023 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-issue-1991862615
git.util.rmtree can change permissions outside tree on Unix (chmod traverses symlinks) #1738 https://redirect.github.com/gitpython-developers/GitPython/issues/1738
https://redirect.github.com/data-sync-user
data-sync-userhttps://redirect.github.com/data-sync-user
Feb 9, 2025 https://redirect.github.com/gitpython-developers/GitPython/pull/1644#ref-pullrequest-1936251260
Bump gitpython from 3.1.32 to 3.1.37 mozilla/opmon#168 https://redirect.github.com/mozilla/opmon/pull/168
Sign up for freehttps://redirect.github.com/join?source=comment-repo
Sign in to commenthttps://redirect.github.com/login?return_to=https%3A%2F%2Fgithub.com%2Fgitpython-developers%2FGitPython%2Fpull%2F1644
https://redirect.github.com/Byron
Byron https://redirect.github.com/Byron
https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files/65b8c6a2ccacdf26e751cd3bc3c5a7c9e5796b56
https://redirect.github.com/empty
empty https://redirect.github.com/empty
https://redirect.github.com/stsewd
stsewd https://redirect.github.com/stsewd
https://redirect.github.com/gitpython-developers/GitPython/pull/1644/files/a96ba17c5546a28ef40c196ebd6206705190d169
v3.1.35 - Bugfixes https://redirect.github.com/gitpython-developers/GitPython/milestone/65
CVE-2023-41040: Blind local file inclusion https://github.com/gitpython-developers/GitPython/issues/1638
Please reload this pagehttps://redirect.github.com/gitpython-developers/GitPython/pull/1644
https://redirect.github.com/facutuesca
https://redirect.github.com/doc-sheet
https://redirect.github.com/Byron
https://redirect.github.com/EliahKagan
https://redirect.github.com/stsewd
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.