kmx.io/ex_ovh

Browse

Commit 4e2422604aa318b926f566910a5f694e5bd5d2b0

Stephen Moloney 2017-03-31T18:38:50

add deprecation notice and warnings about versions less than 0.3.2 of ex_ovh 

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c860a97..d46840b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -16,6 +16,9 @@
 
 ## v0.3.1
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 [changes]
 - Update some dependencies
 - Relax versioning of some dependencies
@@ -37,6 +40,9 @@ in the third party library [httpipe](https://hex.pm/packages/httpipe)
 
 ## v0.2
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 [enhancements]
 - Update some dependencies
 - Update mix task so that it will handle activated 2FA on OVH accounts
@@ -51,21 +57,33 @@ in the third party library [httpipe](https://hex.pm/packages/httpipe)
 
 ## v0.1.3
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 - Improve the `mix ovh` docs to better illustrate how to create an application and setup access rules.
 
 ## v0.1.2
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 - Fix `mix ovh` task.
 - Fix some of the `/cloud` queries (binary key was missing due to missed earlier change)
 
 
 ## v0.1.1
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 - No changes to source code. Only documentation changes.
 
 
 ## v0.1.0
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 - Decouple the `Openstack` component into the `Openstex` repository.
 Only requests to the `ExOvh` API can be made with `ExOvh`.
 - Add documentation.
@@ -74,4 +92,7 @@ Only requests to the `ExOvh` API can be made with `ExOvh`.
 
 ## v0.0.1
 
+***Security Warning: Versions of `ex_ovh` less than `0.3.2` are deprecated and should not be used
+due to the inclusion of older releases of the dependency `Og` Use versions `0.3.2` only of `ex_ovh`***
+
 - Initial release.
\ No newline at end of file
diff --git a/README.md b/README.md
index b6b3e13..3c2c8cd 100644
--- a/README.md
+++ b/README.md
@@ -3,6 +3,11 @@
 ExOvh is an helper library for the [elixir language](http://elixir-lang.org/) for the [Ovh Api](https://api.ovh.com/).
 To use the Openstack components of the OVH API, see [Openstex](https://github.com/stephenmoloney/openstex)
 
+#### Warning
+
+- Only use versions `0.3.2` or greater of `ex_ovh`. Earlier versions have a security vulnerability
+due to the inclusion of older versions of the [og](https://hex.pm/packages/og). The issue is documented
+in the [og](https://github.com/stephenmoloney/og) library.
 
 #### Project Features
kmx.io     mail     discord kmxgit v0.4.0