Root has patched CVE-2022-36359 in the rootio-django package for Root:PyPI. Multiple fixed versions available.
{ "distro": "pypi", "source": "Root", "distro_version": "", "severity": "HIGH" }
"root.io.1"
1.0
"https://api.root.io/external/osv/ROOT-APP-PYPI-CVE-2022-36359.json"
"2.2.28"
true
[ "2.2.28+root.io.1" ]