VYPR

PyPI package

powerline-gitstatus

pkg:pypi/powerline-gitstatus

Vulnerabilities (1)

  • CVE-2022-42906Oct 13, 2022
    affected < 1.3.2fixed 1.3.2

    powerline-gitstatus (aka Powerline Gitstatus) before 1.3.2 allows arbitrary code execution. git repositories can contain per-repository configuration that changes the behavior of git, including running arbitrary commands. When using powerline-gitstatus, changing to a directory au