GMS-2021-24: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) in @liquity/contracts.
References
- github.com/advisories/GHSA-xh2p-7p87-fhgh
- github.com/liquity/dev/blob/7c83ea11378454629618b3808b16fbfda69ee3e5/packages/contracts/contracts/TroveManager.sol
- github.com/liquity/dev/commit/c69d0bae30b5457e89724d880851a03ba7477905
- github.com/liquity/dev/security/advisories/GHSA-xh2p-7p87-fhgh
- www.npmjs.com/package/@liquity/contracts
Code Behaviors & Features
Detect and mitigate GMS-2021-24 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →