GH Security Advisories reporting Ansible issue but it has been fixed in previous verison


I do not really know where to post such issue related to a false-positive with GHSA, please tell me if there is a better place for this post.

This issue in GHSA DB Improper Input Validation and Command Injection in Ansible 路 CVE-2021-3583 路 GitHub Advisory Database 路 GitHub is said to affect Ansible versions <4.2.0 but as stated in the bug tracker, it has been merged and fixed for Ansible version v2.9.23.

Could it be possible to fix this?

Thank you :slight_smile:!

1 Like