Article URL: https://github.com/zipstack/visitran Comments URL: https://news.ycombinator.com/item?id=47521011 Points: 1 # Comments: 0
Show HN: Visitran – Cursor for Data Transformations (open source)
The GitHub repository 'zipstack/visitran' (Visitran) was flagged on Hacker News for containing a Remote Code Execution (RCE) vulnerability in its open-source data transformation tool. The issue affects users of Visitran's cursor-based transformation engine, enabling unauthenticated attackers to execute arbitrary code on vulnerable systems.