Skip to content

Add Scrapy CVE-2024-1892 references#8582

Draft
cookesan wants to merge 3 commits into
github:cookesan/advisory-improvement-8582from
cookesan:scrapy-1892-nvd-reference
Draft

Add Scrapy CVE-2024-1892 references#8582
cookesan wants to merge 3 commits into
github:cookesan/advisory-improvement-8582from
cookesan:scrapy-1892-nvd-reference

Conversation

@cookesan

@cookesan cookesan commented Jul 7, 2026

Copy link
Copy Markdown

Adds Scrapy 1.8.4 and 2.11.1 release, PyPI, and NVD references for CVE-2024-1892 to GHSA-cc65-xxvf-f7r9.

Audit refresh, July 8, 2026:

  • Confirmed GHSA-cc65-xxvf-f7r9 maps to CVE-2024-1892, and NVD has a record for CVE-2024-1892.
  • Confirmed Scrapy 1.8.4 and 2.11.1 exist on PyPI, and both upstream release tags resolve.
  • Local checks passed: one advisory JSON file changed in the PR diff, JSON parses, git diff --check passes, and the worktree is clean.

@github-actions github-actions Bot changed the base branch from main to cookesan/advisory-improvement-8582 July 7, 2026 10:50
@cookesan cookesan changed the title Add Scrapy CVE-2024-1892 NVD reference Add Scrapy CVE-2024-1892 references Jul 7, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant