Y
Hacker News
new
|
ask
|
show
|
jobs
by
mattaustin
48 days ago
I submitted a remote code execution to the browser-use about 40 days ago. GHSA-r2x7-6hq9-qp7v I am a bit stunned by the lack of response. Any safety concerns in this project?
2 comments
LarsenCC
48 days ago
Hey! Where did you submit this exactly? Can you provide a link? Will ask others on the team also, but I am not sure what you are referring to.
link
mattaustin
48 days ago
yes:
https://github.com/browser-use/browser-use/security/advisori...
link
hrimfaxi
48 days ago
404 for me
link
mattaustin
47 days ago
Its 404 because its reported to them "privately" via the "Security and Privacy" tab. It has just been ignored by them.
link
Chris2048
48 days ago
Is that correct?
https://github.com/advisories/GHSA-r2x7-6hq9-qp7v
returns a 404.
link
mattaustin
47 days ago
it is
https://github.com/browser-use/browser-use/security/advisori...
, but it will also 404 until they make it public.
link