mend-bolt-for-github[bot]

## CVE-2021-33502 - High Severity Vulnerability Vulnerable Libraries - normalize-url-1.9.1.tgz, normalize-url-3.3.0.tgz, normalize-url-4.5.0.tgz normalize-url-1.9.1.tgz Normalize a URL Library home page: https://registry.npmjs.org/normalize-url/-/normalize-url-1.9.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/normalize-url/package.json...

## CVE-2022-25878 - High Severity Vulnerability Vulnerable Library - protobufjs-6.10.1.tgz Protocol Buffers for JavaScript (& TypeScript). Library home page: https://registry.npmjs.org/protobufjs/-/protobufjs-6.10.1.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/protobufjs/package.json...

## CVE-2022-0691 - High Severity Vulnerability Vulnerable Library - url-parse-1.4.7.tgz Small footprint URL parser that works seamlessly across Node.js and browser environments Library home page: https://registry.npmjs.org/url-parse/-/url-parse-1.4.7.tgz Path to dependency file:...

## CVE-2021-23386 - Medium Severity Vulnerability Vulnerable Library - dns-packet-5.2.1.tgz An abstract-encoding compliant module for encoding / decoding DNS packets Library home page: https://registry.npmjs.org/dns-packet/-/dns-packet-5.2.1.tgz Path to dependency file: /package.json Path...

## CVE-2022-24785 - High Severity Vulnerability Vulnerable Library - moment-2.29.0.tgz Parse, validate, manipulate, and display dates Library home page: https://registry.npmjs.org/moment/-/moment-2.29.0.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/moment/package.json...

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

## CVE-2020-15250 - Medium Severity Vulnerability Vulnerable Library - junit-4.10.jar JUnit is a regression testing framework written by Erich Gamma and Kent Beck. It is used by the developer who...

## CVE-2021-44832 - Medium Severity Vulnerability Vulnerable Library - log4j-core-2.13.3.jar The Apache Log4j Implementation Library home page: https://logging.apache.org/log4j/2.x/ Path to dependency file: /benchmark/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/apache/logging/log4j/log4j-core/2.13.3/log4j-core-2.13.3.jar Dependency Hierarchy:...

## CVE-2021-44228 - High Severity Vulnerability Vulnerable Library - log4j-core-2.13.3.jar The Apache Log4j Implementation Library home page: https://logging.apache.org/log4j/2.x/ Path to dependency file: /benchmark/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/apache/logging/log4j/log4j-core/2.13.3/log4j-core-2.13.3.jar Dependency Hierarchy:...

## CVE-2021-45105 - High Severity Vulnerability Vulnerable Library - log4j-core-2.13.3.jar The Apache Log4j Implementation Library home page: https://logging.apache.org/log4j/2.x/ Path to dependency file: /benchmark/pom.xml Path to vulnerable library: /home/wss-scanner/.m2/repository/org/apache/logging/log4j/log4j-core/2.13.3/log4j-core-2.13.3.jar Dependency Hierarchy:...