Awọn imudojuiwọn atunṣe si Syeed idagbasoke ifowosowopo GitLab 15.3.1, 15.2.3 ati 15.1.5 yanju ailagbara pataki kan (CVE-2022-2884) ti o fun laaye olumulo ti o ni ifọwọsi pẹlu iraye si API fun gbigbe data wọle lati GitHub lati ṣiṣẹ koodu latọna jijin lori olupin naa. Awọn alaye iṣẹ ko tii ti pese. Ailagbara naa jẹ idanimọ nipasẹ oniwadi aabo gẹgẹbi apakan ti eto ẹbun ailagbara HackerOne.
Gẹgẹbi iṣẹ-ṣiṣe, o gba ọ niyanju pe olutọju naa mu iṣẹ agbewọle wọle lati GitHub (ni wiwo oju opo wẹẹbu GitLab: “Akojọ aṣyn” -> “Abojuto” -> “Eto” -> “Gbogbogbo” -> “Hihan ati awọn iṣakoso iwọle” - > "Awọn orisun wọle" -> mu "GitHub" ṣiṣẹ.
orisun: opennet.ru