[SECURITY] Fedora 42 Update: gitleaks-8.29.0-1.fc42

Scan git repos or files for secrets using regex and entropy...

Security update for obs-scm-bridge

This update for obs-scm-bridge fixes the following issues: Updated to version 0.5.4: - CVE-2024-22038: Fixed DoS attacks, information leaks with crafted Git repositories bnc1230469 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...

Regular Expression Denial Of Service (ReDoS)

repo-git-downloader is vulnerable to regular expression denial of service. The vulnerability exists due to the insecure regex pattern used for match repository urls in the getOptions function of option.js, allowing an attacker to crash the application by downloading maliciously crafted git...

Gitcolombo - Extract And Analyze Contributors Info From Git Repos

OSINT tool to extract info about persons from git repositories: common names, emails, matches between different as it may seems accounts. Using 1. Install git 2. Run: repos by nickname ./gitcolombo.py --nickname LubyRuffy" from any git url ./gitcolombo.py -u...

mercurial: arbitrary code execution

Mercurial prior to 3.8 allowed arbitrary code execution when using the convert extension on Git repos with hostile names. This could affect automated code conversion services that allow arbitrary repository names. This is a further side-effect of Git CVE-2015-7545. Reported and fixed by Blake...

mercurial -- arbitrary code execution vulnerability

Mercurial reports: CVE-2016-3105: Arbitrary code execution when converting Git repos...