-
Notifications
You must be signed in to change notification settings - Fork 10
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security issue during Git push #1666
Comments
So if I see it correctly, iText is only used in the Wherigo decompiler. |
So we need @t-m-z to be aware of this and that will be removed, right? |
Well, I don't think he can remove it quickly, but the script is supposed to be switched to an offline version anyway. |
As far as I understand this issue:
itext is an jar which allows to read and write PDF.
The WherigoDecompiler JavaServlet reads a compiled LUA ByteCode beeing part of a WherigoCartridge, decompiles it with unluac.jar and sends back the LUA Sourcecode.
Up to now I have no idea why this itext issue affects us.
Sent from MailDroid
…-----Original Message-----
From: Mike-3 ***@***.***>
To: S-Man42/GCWizard ***@***.***>
Cc: Thomas ***@***.***>, Mention ***@***.***>
Sent: Di., 16 Juli 2024 18:58
Subject: Re: [S-Man42/GCWizard] Security issue during Git push (Issue #1666)
Well, I don't think he can remove it quickly, but the script is supposed to be switched to an offline version anyway.
--
Reply to this email directly or view it on GitHub:
#1666 (comment)
You are receiving this because you were mentioned.
Message ID: ***@***.***>
|
Well, I just looked for iText in our project and it was only found once. I can only imagine that it was included by some lib. |
https:/S-Man42/GCWizard/security/dependabot/1
The text was updated successfully, but these errors were encountered: