Vulnerability due to pinned protobuf package

Question

Vulnerability due to pinned protobuf package

famenzel opened this issue 4 months ago · 1 comments

According to the National Vulnerability Database, the pinning of protobuf
protobuf==3.20.2 in the latest 1.14 release leads to a major vulnerability. Since this pinning seems to be fixed on master, a version upgrade would be really helpful.

Answer 1 · 2024-10-03T17:49:41.000Z

Duplicate of #300