Skip to content

Tags: git-pkgs/spdx

Tags

v0.1.3

Toggle v0.1.3's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode 
Add input length cap and parenthesis depth limit to expression parser (

…#13)

parseAtom recurses into parseExpression on each open parenthesis with no
depth bound, so a long run of '(' overflows the goroutine stack and
fatally crashes the process. Adds a depth counter on the parser struct
checked on each open paren, and a 1 MiB input length cap at the top of
Parse and ParseStrict. Both return ErrExpressionTooLarge.

v0.1.2

Toggle v0.1.2's commit message

Verified

This commit was signed with the committer’s verified signature.
andrew Andrew Nesbitt
GPG key ID: 4B082F67059F4038
Verified
Learn about vigilant mode 
Bump github.com/stretchr/testify to v1.11.1

v0.1.1

Toggle v0.1.1's commit message

Verified

This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode 
Merge pull request #7 from git-pkgs/dependabot/github_actions/actions…

…/setup-go-6.3.0

Bump actions/setup-go from 6.2.0 to 6.3.0

v0.1.0

Toggle v0.1.0's commit message

Verified

This commit was signed with the committer’s verified signature.
andrew Andrew Nesbitt
GPG key ID: 4B082F67059F4038
Verified
Learn about vigilant mode 
Hello world