Scott.Idem/OSIT-Mailman3
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity

Bump the mailman-hyperkitty plugin to 1.2.0.

Browse Source 
This new version sends the api_key as an Authorization header instead of
a GET parameter, which fixes a security vulnerability. The change is needed
since Hyperkitty has been upgraded to 1.3.5.
This commit is contained in:
Leonardo Robol
2021-11-23 08:00:23 +01:00
parent 420d47e88e
commit d8f6412074
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
core/Dockerfile
View File

@@ -15,7 +15,7 @@ RUN --mount=type=cache,target=/root/.cache \
&& python3 -m pip install psycopg2 \ && python3 -m pip install psycopg2 \
gunicorn==19.9.0 \ gunicorn==19.9.0 \
mailman==3.3.5 \ mailman==3.3.5 \
mailman-hyperkitty==1.1.0 \ mailman-hyperkitty==1.2.0 \
pymysql \ pymysql \
'sqlalchemy<1.4.0' \ 'sqlalchemy<1.4.0' \
&& apk del build-deps \ && apk del build-deps \