Security: netbox-community/devicetype-library
Security
No security policy detected
This project has not set up a SECURITY.md file yet.
Report a vulnerability-
CI workflow runs pull-request-supplied code from untrusted contributors via requirements.txt, pre-commit configs, and .gitmodulesGHSA-5x2m-x42f-g4cm published
Jun 11, 2026 by danner26Moderate -
CI test harness clones from a pull-request-controllable upstream URL, enabling blind SSRF and validation-data substitutionGHSA-8cfp-3c4q-xr6x published
Jun 10, 2026 by danner26Moderate -
Module-shadowing remote code execution in the CI test harness (missing tests/__init__.py)GHSA-wwg5-825x-83g6 published
Jun 10, 2026 by danner26High -
Test harness's PR-controllable upstream clone URL (NETBOX_DT_LIBRARY_URL) enables blind SSRF and validation-data substitution in CIGHSA-492p-5wp7-2w7c published
Jun 9, 2026 by danner26Critical
Learn more about advisories related to netbox-community/devicetype-library in the GitHub Advisory Database