VYPR

Go modules package

github.com/cli/cli

pkg:golang/github.com/cli/cli

Vulnerabilities (2)

  • CVE-2024-54132MedDec 4, 2024
    affected <= 1.14.0

    The GitHub CLI is GitHub’s official command line tool. A security vulnerability has been identified in GitHub CLI that could create or overwrite files in unintended directories when users download a malicious GitHub Actions workflow artifact through gh run download. This vulnerab

  • CVE-2024-52308Nov 14, 2024
    affected < 2.62.0fixed 2.62.0

    The GitHub CLI version 2.6.1 and earlier are vulnerable to remote code execution through a malicious codespace SSH server when using `gh codespace ssh` or `gh codespace logs` commands. This has been patched in the cli v2.62.0. Developers connect to remote codespaces through an S