Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[SR-11190] SwiftPM should integrate with Github's security advisories #4683

Open
weissi opened this issue Jul 23, 2019 · 1 comment
Open
Labels

Comments

@weissi
Copy link
Member

weissi commented Jul 23, 2019

Previous ID SR-11190
Radar rdar://problem/53453773
Original Reporter @weissi
Type Bug
Additional Detail from JIRA
Votes 0
Component/s Package Manager
Labels Bug
Assignee None
Priority Medium

md5: 5eb05c9471357eb7072dbb7cbc7355d4

relates to:

  • SR-10860 SwiftPM package deprecation feature

Issue Description:

Github now has security advisories (example: https://github.com/kylebrowning/APNSwift/security/advisories/GHSA-qh2w-vjxg-mjcg). SwiftPM should have integration with those and by default not download any versions that are affected without some kind of --force-insecure-packages switch.

@weissi
Copy link
Member Author

weissi commented Jul 23, 2019

@swift-ci create

@swift-ci swift-ci transferred this issue from apple/swift-issues Apr 25, 2022
@shahmishal shahmishal transferred this issue from apple/swift May 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants