{"ref":"refs/heads/main","before":"cd4a0122e243245f1b8277a6a85b3eb710c5f65e","after":"435668eea2682a02235e659728b632db6af36a28","repository":{"id":19279199,"node_id":"MDEwOlJlcG9zaXRvcnkxOTI3OTE5OQ==","name":"openscap","full_name":"OpenSCAP/openscap","private":false,"owner":{"name":"OpenSCAP","email":null,"login":"OpenSCAP","id":7439934,"node_id":"MDEyOk9yZ2FuaXphdGlvbjc0Mzk5MzQ=","avatar_url":"https://avatars.githubusercontent.com/u/7439934?v=4","gravatar_id":"","url":"https://api.github.com/users/OpenSCAP","html_url":"https://github.com/OpenSCAP","followers_url":"https://api.github.com/users/OpenSCAP/followers","following_url":"https://api.github.com/users/OpenSCAP/following{/other_user}","gists_url":"https://api.github.com/users/OpenSCAP/gists{/gist_id}","starred_url":"https://api.github.com/users/OpenSCAP/starred{/owner}{/repo}","subscriptions_url":"https://api.github.com/users/OpenSCAP/subscriptions","organizations_url":"https://api.github.com/users/OpenSCAP/orgs","repos_url":"https://api.github.com/users/OpenSCAP/repos","events_url":"https://api.github.com/users/OpenSCAP/events{/privacy}","received_events_url":"https://api.github.com/users/OpenSCAP/received_events","type":"Organization","user_view_type":"public","site_admin":false},"html_url":"https://github.com/OpenSCAP/openscap","description":"NIST Certified SCAP 1.2 toolkit","fork":false,"url":"https://api.github.com/repos/OpenSCAP/openscap","forks_url":"https://api.github.com/repos/OpenSCAP/openscap/forks","keys_url":"https://api.github.com/repos/OpenSCAP/openscap/keys{/key_id}","collaborators_url":"https://api.github.com/repos/OpenSCAP/openscap/collaborators{/collaborator}","teams_url":"https://api.github.com/repos/OpenSCAP/openscap/teams","hooks_url":"https://api.github.com/repos/OpenSCAP/openscap/hooks","issue_events_url":"https://api.github.com/repos/OpenSCAP/openscap/issues/events{/number}","events_url":"https://api.github.com/repos/OpenSCAP/openscap/events","assignees_url":"https://api.github.com/repos/OpenSCAP/openscap/assignees{/user}","branches_url":"https://api.github.com/repos/OpenSCAP/openscap/branches{/branch}","tags_url":"https://api.github.com/repos/OpenSCAP/openscap/tags","blobs_url":"https://api.github.com/repos/OpenSCAP/openscap/git/blobs{/sha}","git_tags_url":"https://api.github.com/repos/OpenSCAP/openscap/git/tags{/sha}","git_refs_url":"https://api.github.com/repos/OpenSCAP/openscap/git/refs{/sha}","trees_url":"https://api.github.com/repos/OpenSCAP/openscap/git/trees{/sha}","statuses_url":"https://api.github.com/repos/OpenSCAP/openscap/statuses/{sha}","languages_url":"https://api.github.com/repos/OpenSCAP/openscap/languages","stargazers_url":"https://api.github.com/repos/OpenSCAP/openscap/stargazers","contributors_url":"https://api.github.com/repos/OpenSCAP/openscap/contributors","subscribers_url":"https://api.github.com/repos/OpenSCAP/openscap/subscribers","subscription_url":"https://api.github.com/repos/OpenSCAP/openscap/subscription","commits_url":"https://api.github.com/repos/OpenSCAP/openscap/commits{/sha}","git_commits_url":"https://api.github.com/repos/OpenSCAP/openscap/git/commits{/sha}","comments_url":"https://api.github.com/repos/OpenSCAP/openscap/comments{/number}","issue_comment_url":"https://api.github.com/repos/OpenSCAP/openscap/issues/comments{/number}","contents_url":"https://api.github.com/repos/OpenSCAP/openscap/contents/{+path}","compare_url":"https://api.github.com/repos/OpenSCAP/openscap/compare/{base}...{head}","merges_url":"https://api.github.com/repos/OpenSCAP/openscap/merges","archive_url":"https://api.github.com/repos/OpenSCAP/openscap/{archive_format}{/ref}","downloads_url":"https://api.github.com/repos/OpenSCAP/openscap/downloads","issues_url":"https://api.github.com/repos/OpenSCAP/openscap/issues{/number}","pulls_url":"https://api.github.com/repos/OpenSCAP/openscap/pulls{/number}","milestones_url":"https://api.github.com/repos/OpenSCAP/openscap/milestones{/number}","notifications_url":"https://api.github.com/repos/OpenSCAP/openscap/notifications{?since,all,participating}","labels_url":"https://api.github.com/repos/OpenSCAP/openscap/labels{/name}","releases_url":"https://api.github.com/repos/OpenSCAP/openscap/releases{/id}","deployments_url":"https://api.github.com/repos/OpenSCAP/openscap/deployments","created_at":1398781414,"updated_at":"2026-06-11T12:43:43Z","pushed_at":1781183517,"git_url":"git://github.com/OpenSCAP/openscap.git","ssh_url":"git@github.com:OpenSCAP/openscap.git","clone_url":"https://github.com/OpenSCAP/openscap.git","svn_url":"https://github.com/OpenSCAP/openscap","homepage":"https://www.open-scap.org/tools/openscap-base","size":32160,"stargazers_count":1737,"watchers_count":1737,"language":"XSLT","has_issues":true,"has_projects":true,"has_downloads":true,"has_wiki":true,"has_pages":false,"has_discussions":true,"forks_count":438,"mirror_url":null,"archived":false,"disabled":false,"open_issues_count":65,"license":{"key":"lgpl-2.1","name":"GNU Lesser General Public License v2.1","spdx_id":"LGPL-2.1","url":"https://api.github.com/licenses/lgpl-2.1","node_id":"MDc6TGljZW5zZTEx"},"allow_forking":true,"is_template":false,"web_commit_signoff_required":false,"has_pull_requests":true,"pull_request_creation_policy":"all","topics":["compliance","cpe","data-stream","openscap","oval","scanning","scap","xccdf"],"visibility":"public","forks":438,"open_issues":65,"watchers":1737,"default_branch":"main","stargazers":1737,"master_branch":"main","organization":"OpenSCAP","custom_properties":{}},"pusher":{"name":"jan-cerny","email":"jcerny@redhat.com"},"forced":false,"organization":{"login":"OpenSCAP","id":7439934,"node_id":"MDEyOk9yZ2FuaXphdGlvbjc0Mzk5MzQ=","url":"https://api.github.com/orgs/OpenSCAP","repos_url":"https://api.github.com/orgs/OpenSCAP/repos","events_url":"https://api.github.com/orgs/OpenSCAP/events","hooks_url":"https://api.github.com/orgs/OpenSCAP/hooks","issues_url":"https://api.github.com/orgs/OpenSCAP/issues","members_url":"https://api.github.com/orgs/OpenSCAP/members{/member}","public_members_url":"https://api.github.com/orgs/OpenSCAP/public_members{/member}","avatar_url":"https://avatars.githubusercontent.com/u/7439934?v=4","description":"Open Source Security Compliance Solution"},"sender":{"login":"jan-cerny","id":9050916,"node_id":"MDQ6VXNlcjkwNTA5MTY=","avatar_url":"https://avatars.githubusercontent.com/u/9050916?v=4","gravatar_id":"","url":"https://api.github.com/users/jan-cerny","html_url":"https://github.com/jan-cerny","followers_url":"https://api.github.com/users/jan-cerny/followers","following_url":"https://api.github.com/users/jan-cerny/following{/other_user}","gists_url":"https://api.github.com/users/jan-cerny/gists{/gist_id}","starred_url":"https://api.github.com/users/jan-cerny/starred{/owner}{/repo}","subscriptions_url":"https://api.github.com/users/jan-cerny/subscriptions","organizations_url":"https://api.github.com/users/jan-cerny/orgs","repos_url":"https://api.github.com/users/jan-cerny/repos","events_url":"https://api.github.com/users/jan-cerny/events{/privacy}","received_events_url":"https://api.github.com/users/jan-cerny/received_events","type":"User","user_view_type":"public","site_admin":false},"created":false,"deleted":false,"base_ref":null,"compare":"https://github.com/OpenSCAP/openscap/compare/cd4a0122e243...435668eea268","commits":[{"id":"fe252b1c46cbd452324a8573d76474f8a46e900c","tree_id":"1bc59144aba17d849b8fc6ba82350e0ab4545f44","distinct":false,"message":"CPE/XCCDF/DS: fix infinite loops in parsers on malformed input\n\nSeveral parse loops never made progress on unexpected/truncated input,\nspinning forever (DoS).\n\n- CPE dict/lang: `while (localname != TAG)` loops spun at EOF (localname\n  becomes NULL / reader stops advancing) and on unconsumed child nodes in\n  cpe_item, cpe_generator, cpe_platform, cpe vendor/notes, cpe23 and\n  deprecation parsing; cpe_testexpr_parse spun on a nested logical-test with\n  an invalid operator. Break on end-of-document and force forward progress.\n- XCCDF profile: xccdf_profile_parse / xccdf_parse_remarks could re-read the\n  same node forever; added a forward-progress guard and skip non-<remark>\n  children.\n- DS rds_index: the report-requests/assets/reports loops did `continue`\n  without advancing the reader on a non-matching element. Also NULL-safe id\n  lookups and guards for unresolved relationship refs.","timestamp":"2026-06-03T08:47:02Z","url":"https://github.com/OpenSCAP/openscap/commit/fe252b1c46cbd452324a8573d76474f8a46e900c","author":{"name":"Edouard Schweisguth","email":"edouard.schweisguth@datadoghq.com","date":"2026-06-03T08:47:02Z","username":"edznux-dd"},"committer":{"name":"Edouard Schweisguth","email":"edouard.schweisguth@datadoghq.com","date":"2026-06-03T08:47:02Z","username":"edznux-dd"},"added":[],"removed":[],"modified":["src/CPE/cpedict_ext_priv.c","src/CPE/cpedict_priv.c","src/CPE/cpelang_priv.c","src/DS/rds_index.c","src/XCCDF/profile.c"]},{"id":"435668eea2682a02235e659728b632db6af36a28","tree_id":"4e0cf2524536010e590b95265a66e05e08d68786","distinct":true,"message":"Merge pull request #2362 from edznux-dd/fix/parser-infinite-loops\n\nCPE/XCCDF/DS: fix infinite loops in parsers on malformed input","timestamp":"2026-06-11T15:11:57+02:00","url":"https://github.com/OpenSCAP/openscap/commit/435668eea2682a02235e659728b632db6af36a28","author":{"name":"Jan Černý","email":"jcerny@redhat.com","date":"2026-06-11T15:11:57+02:00","username":"jan-cerny"},"committer":{"name":"GitHub","email":"noreply@github.com","date":"2026-06-11T15:11:57+02:00","username":"web-flow"},"added":[],"removed":[],"modified":["src/CPE/cpedict_ext_priv.c","src/CPE/cpedict_priv.c","src/CPE/cpelang_priv.c","src/DS/rds_index.c","src/XCCDF/profile.c"]}],"head_commit":{"id":"435668eea2682a02235e659728b632db6af36a28","tree_id":"4e0cf2524536010e590b95265a66e05e08d68786","distinct":true,"message":"Merge pull request #2362 from edznux-dd/fix/parser-infinite-loops\n\nCPE/XCCDF/DS: fix infinite loops in parsers on malformed input","timestamp":"2026-06-11T15:11:57+02:00","url":"https://github.com/OpenSCAP/openscap/commit/435668eea2682a02235e659728b632db6af36a28","author":{"name":"Jan Černý","email":"jcerny@redhat.com","date":"2026-06-11T15:11:57+02:00","username":"jan-cerny"},"committer":{"name":"GitHub","email":"noreply@github.com","date":"2026-06-11T15:11:57+02:00","username":"web-flow"},"added":[],"removed":[],"modified":["src/CPE/cpedict_ext_priv.c","src/CPE/cpedict_priv.c","src/CPE/cpelang_priv.c","src/DS/rds_index.c","src/XCCDF/profile.c"]}}