Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/sixcolors/fiber-csrf-cve-test

test that this fiber alert is picked up by dependabot.
https://github.com/sixcolors/fiber-csrf-cve-test

Last synced: 11 days ago
JSON representation

test that this fiber alert is picked up by dependabot.

Host: GitHub
URL: https://github.com/sixcolors/fiber-csrf-cve-test
Owner: sixcolors
License: mit
Created: 2023-10-21T15:06:49.000Z (about 1 year ago)
Default Branch: main
Last Pushed: 2024-03-27T17:05:11.000Z (7 months ago)
Last Synced: 2024-10-05T17:41:21.968Z (about 1 month ago)
Language: Go
Size: 85.9 KB
Stars: 0
Watchers: 2
Forks: 0
Open Issues: 3
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

# What is this?

This repo is a clone of [gofiber/recipes/csrf-with-session](https://github.com/gofiber/recipes/tree/master/csrf-with-session) with the following changes:

- The `README.md` file has been updated to reflect the changes made to the repo.
- The `go.mod` file has been updated to use a version of Fiber that has published vulerability alerts for the CSRF middleware.
- A dependabot configuration file has been added to the repo to enable dependabot alerts.

## Vulnerability Alerts

If everything is working as expected the following vulnerability alerts should be present:

- [GHSA-mv73-f69x-444p](https://github.com/gofiber/fiber/security/advisories/GHSA-mv73-f69x-444p) CVE-2023-45141
- [GHSA-94w9-97p3-p368](https://github.com/gofiber/fiber/security/advisories/GHSA-94w9-97p3-p368) CVE-2023-45128

## It works!

![dependabot alerts](dependabot_alerts.jpg)