From efa500cd6957f740d4a22abacff0938ab6c5fa90 Mon Sep 17 00:00:00 2001 From: tommasini <46944231+tommasini@users.noreply.github.com> Date: Fri, 4 Oct 2024 00:23:13 +0100 Subject: [PATCH] chore: exclude temporarily sentry SDK advisory (#11615) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit ## **Description** This PR excludes temporarily the [Sentry sdk gh advisory](https://github.com/advisories/GHSA-593m-55hh-j8gv) ## **Related issues** Fixes: ## **Manual testing steps** 1. Go to this page... 2. 3. ## **Screenshots/Recordings** ### **Before** ### **After** ## **Pre-merge author checklist** - [ ] I’ve followed [MetaMask Contributor Docs](https://github.com/MetaMask/contributor-docs) and [MetaMask Mobile Coding Standards](https://github.com/MetaMask/metamask-mobile/blob/main/.github/guidelines/CODING_GUIDELINES.md). - [ ] I've completed the PR template to the best of my ability - [ ] I’ve included tests if applicable - [ ] I’ve documented my code using [JSDoc](https://jsdoc.app/) format if applicable - [ ] I’ve applied the right labels on the PR (see [labeling guidelines](https://github.com/MetaMask/metamask-mobile/blob/main/.github/guidelines/LABELING_GUIDELINES.md)). Not required for external contributors. ## **Pre-merge reviewer checklist** - [ ] I've manually tested the PR (e.g. pull and build branch, run the app, test code being changed). - [ ] I confirm that this PR addresses all acceptance criteria described in the ticket it closes and includes the necessary testing evidence such as recordings and or screenshots. --- .iyarc | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/.iyarc b/.iyarc index abbf0e189d2..7fb6e40287c 100644 --- a/.iyarc +++ b/.iyarc @@ -1,3 +1,7 @@ # ReDoS vulnerability, no impact to this application, and fix not backported yet to the versions we use GHSA-c2qf-rxjj-qqgw + +# Sentry SDK Prototype Pollution gadget in JavaScript SDKs + +GHSA-593m-55hh-j8gv