Homepage

dockerspawner@12.1.0 vulnerabilities

Dockerspawner: A custom spawner for Jupyterhub.

  • latest version

    14.0.0

  • latest non vulnerable version

    14.0.0

  • first published

    9 years ago

  • latest version published

    8 days ago

  • licenses detected

  • View dockerspawner package health on Snyk Advisor  (opens in a new tab)
    • Go back to all versions of this package
    Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the dockerspawner package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • H
    Improper Input Validation

    dockerspawner is a Dockerspawner: A custom spawner for Jupyterhub.

    Affected versions of this package are vulnerable to Improper Input Validation in the DockerSpawner.allowed_images configuration. This allow users to launch any pullable image, instead of restricting to only the single configured image, as intended.

    How to fix Improper Input Validation?

    Upgrade dockerspawner to version 13.0.0 or higher.

    [0.11.0,13.0.0)
    Go back to all versions of this package