Skip to content

Commit

Permalink
Fix URL
Browse files Browse the repository at this point in the history
I thought published advisories would automatically be promoted from

    https://github.com/owner/repo/security/advisories/GHSA-xxx

to

    https://github.com/advisories/GHSA-xxx

but it looks like this only happens for GitHub-reviewed advisories.
Getting reviewed apparently requires a CVE, and I'm not a huge fan of
the CVE system so I'm not going to press GitHub's "Request CVE" button
(although I don't mind if someone else does).

With this issue plus the known issue of the rustsec ID not being
assigned until publication, it looks like I'm going to have to publish
a 1.3.1 just to change the links.
  • Loading branch information
comex committed Jan 22, 2024
1 parent 4a0724b commit aa3c380
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/quoting_warning.md
Original file line number Diff line number Diff line change
Expand Up @@ -247,7 +247,7 @@ Numeric escapes would solve this as well.
Versions of this crate before 1.3.0 did not quote `{`, `}`, and `\xa0`.
See:
- <https://github.com/advisories/GHSA-r7qv-8r2h-pg27>
- <https://github.com/comex/rust-shlex/security/advisories/GHSA-r7qv-8r2h-pg27>
- (TODO: Add Rustsec link)
## Solved: `!` and `^`
Expand Down

0 comments on commit aa3c380

Please sign in to comment.