Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

fix collision by proxy number #328

Merged
merged 1 commit into from
Jan 11, 2022
Merged

fix collision by proxy number #328

merged 1 commit into from
Jan 11, 2022

Conversation

artalar
Copy link
Contributor

@artalar artalar commented Jan 11, 2022
edited
Loading

You can test live reproduce here https://stackblitz.com/edit/nanoid-collision?file=index.js (type node index.js in the console)

@ai ai merged commit 2b7bd93 into ai:main Jan 11, 2022
@ai
Copy link
Owner

ai commented Jan 11, 2022

Thanks. Fixed was released in 3.1.31.

@github-actions github-actions bot mentioned this pull request Jan 12, 2022
Closed
@aaronenyeshi aaronenyeshi mentioned this pull request Jan 24, 2022
Closed
@sync-by-unito sync-by-unito bot mentioned this pull request Feb 1, 2022
Closed
This was referenced Feb 10, 2022
Open
Open
Closed
This was referenced Feb 10, 2022
Closed
Open
Closed
Open
@mend-for-github-com mend-for-github-com bot mentioned this pull request Feb 11, 2022
Closed
@mend-bolt-for-github mend-bolt-for-github bot mentioned this pull request Feb 11, 2022
Closed
This was referenced Feb 12, 2022
Closed
Open
Closed
Closed
Open
This was referenced Feb 12, 2022
Open
Closed
Closed
Open
Closed
Closed
Closed
Open
Open
This was referenced Apr 7, 2022
Open
Open
Open
Closed
Open
Open
Closed
This was referenced Apr 15, 2022
Open
Open
Closed
Closed
Open
Open
Open
Closed
Closed
@mend-bolt-for-github mend-bolt-for-github bot mentioned this pull request Apr 26, 2022
Closed
@mend-for-github-com mend-for-github-com bot mentioned this pull request Apr 28, 2022
Open
This was referenced May 5, 2022
Open
Open
@mend-for-github-com mend-for-github-com bot mentioned this pull request Jun 2, 2022
Open
@mend-bolt-for-github mend-bolt-for-github bot mentioned this pull request Jun 8, 2022
Open
@mend-for-github-com mend-for-github-com bot mentioned this pull request Jun 9, 2022
Open
This was referenced Dec 18, 2022
Closed
Open
@ckalpakoglu ckalpakoglu mentioned this pull request Jan 9, 2023
Closed
@yangricardo yangricardo mentioned this pull request Apr 5, 2023
Closed
@westonphillips westonphillips mentioned this pull request Jun 27, 2023
Open
quadratz added a commit to quadratz/nanoid-deno that referenced this pull request Jun 13, 2024
@quadratz
test: remove proxy number test for non-secure
828e251 
This test should not be for non-secure in the first place. The test is only valid for the secure one to test the vulnerability (ai#328).
quadratz added a commit to quadratz/nanoid-deno that referenced this pull request Jun 13, 2024
@quadratz
feat: handle 'NaN' size (#3)
22ae99e 
* feat: handle 'NaN' size

Do not allow a 'NaN' value for the id size as it may lead to an infinite loop in the function.

* test: remove proxy number test for non-secure

This test should not be for non-secure in the first place. The test is only valid for the secure one to test the vulnerability (ai#328).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@artalar @ai