Commit Graph

1 Commits (e5cc12a64f274e36738fe51d4caa533003ed626b)

Author SHA1 Message Date
Brian Coca 28f9fbdb5e
safely use vault to edit secrets (#68644)
* when possible, use filedescriptors from mkstemp to avoid race
  * when using path strings, ensure we are always creating the file

CVE-2020-1740
Fixes #67798

Co-authored-by: samdoran
5 years ago