CVE-2021-32724 Found In Your GitHub Actions Workflows: `check-spelling/check-spelling@0.0.17-alpha`

Hello, we are an research team focusing on open source CI/CD security. 
We have detected an action containing CVE imported in your workflow configuration.

## CVE Info

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-32724
https://github.com/check-spelling/check-spelling/security/advisories/GHSA-g86g-chm8-7r2p

## Affected Workflow

https://github.com/devonfw-tutorials/tutorials/blob/main/.github/workflows/spell-check.yml#L12

## Solution

Edit the workflow to use `check-spelling/check-spelling@0.0.19` or newer version.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

CVE-2021-32724 Found In Your GitHub Actions Workflows: `check-spelling/[email protected]` #205

CVE Info

Affected Workflow

Solution

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

CVE-2021-32724 Found In Your GitHub Actions Workflows: check-spelling/[email protected] #205

Description

CVE Info

Affected Workflow

Solution

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions

CVE-2021-32724 Found In Your GitHub Actions Workflows: `check-spelling/[email protected]` #205