CVE-2020-26294, GHSA-gv2h-gf8m-r68j
go/github.com/go-vela/compiler
OS Command Injection
Vela is a Pipeline Automation (CI/CD)
framework built on Linux container technology written in Golang. In addition to upgrading, it is recommended to rotate all secrets.
All versions before 0.6.1
Upgrade to version 0.6.1 or above.
2021-01-16
source |