cumulusci@3.43.0.dev1 vulnerabilities

Build and release tools for Salesforce developers

  • latest version

    4.0.1.dev0

  • latest non vulnerable version

  • first published

    8 years ago

  • latest version published

    11 days ago

  • licenses detected

  • Direct Vulnerabilities

    Known vulnerabilities in the cumulusci package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    CSV Injection

    cumulusci is a Build and release tools for Salesforce developers

    Affected versions of this package are vulnerable to CSV Injection when using unquoted CSV writers.

    How to fix CSV Injection?

    Upgrade cumulusci to version 3.68.0 or higher.

    [,3.68.0)