Nickrolfe

**Name of the Vulnerable Software and Affected Versions** Octobox versions prior to pull request 2807 **Description** Octobox is software for managing GitHub notifications. A user of the system can provide a specifically crafted search query string that will trigger a ReDoS vulnerability. **Recommendations** For versions prior to pull request 2807, update to a version that includes the fix from pull request 2807 to resolve the issue. As a temporary workaround, consider restricting the ability for users to input specially crafted search query strings until the update is applied.