helm
/
helm
mirror of https://github.com/helm/helm.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
helm/pkg/downloader
History
Adam Reese 657ce552cb
fix(*): Validate metadata semver and printable characters 
ref: https://github.com/helm/helm/security/advisories/GHSA-c38g-469g-cmgx

* Skip invalid chart versions when reading the repository index file or
  when programmatically adding a chart version.
* Adds semver validation and strips non-printable characters and
  normalizes spaces for string fields in Metadata.Validate()
* Fixes a unit test that was pulling a remote repo.  Now uses a local
  repo.
* Fixes ignored error in repo update command

Signed-off-by: Adam Reese <adam@reese.io>
 		2021-02-04 12:52:24 -08:00
..
testdata fix(*): Validate metadata semver and printable characters 2021-02-04 12:52:24 -08:00
chart_downloader.go Implement `helm pull` for OCI registries 2020-12-11 21:44:30 -06:00
chart_downloader_test.go Cleanup tempfiles introduced by unit tests under pkg/ 2020-11-23 17:22:52 +08:00
doc.go feat(cli): support XDG base directory specification 2019-08-02 13:15:03 -07:00
manager.go Fix dep build with OCI based charts 2021-01-06 09:55:10 -05:00
manager_test.go Fixes Error: could not find protocol handler for 2020-10-28 10:40:12 -04:00