mirror of
https://github.com/TryGhost/Ghost.git
synced 2025-02-10 23:36:14 -05:00
93e4b2eafd
refs https://github.com/TryGhost/Ghost/security/advisories/GHSA-wfrj-qqc2-83cm refs https://github.com/advisories/GHSA-48ww-j4fc-435p - a vulnerability in `nodemailer` means that the `sendmail` transport is vulnerable to command injection for flags passed to the `sendmail` binary - updating to the latest version of Nodemailer required creating `@tryghost/nodemailer`, which is a wrapper around Nodemailer and several plugins that used to be in the core - this commit switches to using that package, and fixes up some small code + test changes |
||
|---|---|---|
| .. | ||
| apps | ||
| auth | ||
| mega | ||
| members | ||
| notifications | ||
| permissions | ||
| routing | ||
| rss | ||
| settings | ||
| sitemap | ||
| theme-engine | ||
| themes | ||
| url | ||
| labs.test.js | ||
| slack.test.js | ||
| xmlrpc.test.js | ||