Dependabot alert keeps popping up even though the version used for the vulnerable action is higher than the fixed version #116508
Unanswered
IceTDrinker
asked this question in
Code Security
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Select Topic Area
Bug
Body
Hello,
I keep getting an alert about the tj-actions/changed-files action which according to the advisory was fixed in version 41, current version is 44 so should not have the problem, anything we can do to fix this definitely or is it a bug on the GitHub and in that case where can I report it ?
Cheers
Beta Was this translation helpful? Give feedback.
All reactions