mend-bolt-for-github[bot]

Results 3402 issues of mend-bolt-for-github[bot]

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

CVE-2018-10237 (Medium) detected in guava-21.0.jar

## CVE-2018-10237 - Medium Severity Vulnerability Vulnerable Library - guava-21.0.jar Guava is a suite of core and expanded libraries that include utility classes, google's collections, io classes, and much much...

security vulnerability

CVE-2015-3253 (High) detected in groovy-all-2.3.11.jar

## CVE-2015-3253 - High Severity Vulnerability Vulnerable Library - groovy-all-2.3.11.jar Groovy: A powerful, dynamic language for the JVM Path to dependency file: /tmp/ws-scm/plantuml-gradle-plugin/build.gradle Path to vulnerable library: 20200501183523_KRRQZE/downloadResource_RDOLRG/20200501183546/groovy-all-2.3.11.jar,20200501183523_KRRQZE/downloadResource_RDOLRG/20200501183546/groovy-all-2.3.11.jar Dependency Hierarchy:...

security vulnerability

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

CVE-2021-33502 (High) detected in normalize-url-4.5.0.tgz

## CVE-2021-33502 - High Severity Vulnerability Vulnerable Library - normalize-url-4.5.0.tgz Normalize a URL Library home page: https://registry.npmjs.org/normalize-url/-/normalize-url-4.5.0.tgz Path to dependency file: LightTable/deploy/electron/package.json Path to vulnerable library: LightTable/deploy/electron/node_modules/normalize-url/package.json Dependency Hierarchy: -...

security vulnerability

CVE-2021-44906 (High) detected in minimist-1.2.5.tgz

## CVE-2021-44906 - High Severity Vulnerability Vulnerable Library - minimist-1.2.5.tgz parse argument options Library home page: https://registry.npmjs.org/minimist/-/minimist-1.2.5.tgz Path to dependency file: /ui/package.json Path to vulnerable library: /ui/node_modules/minimist/package.json Dependency Hierarchy: -...

security vulnerability

CVE-2022-29526 (Medium) detected in github.com/opencontainers/runc-v1.0.3, github.com/containerd/containerd-v1.6.1

## CVE-2022-29526 - Medium Severity Vulnerability Vulnerable Libraries - github.com/opencontainers/runc-v1.0.3, github.com/containerd/containerd-v1.6.1 github.com/opencontainers/runc-v1.0.3 CLI tool for spawning and running containers according to the OCI specification Dependency Hierarchy: - github.com/moby/moby-v20.10.17 (Root Library)...

security vulnerability

CVE-2022-25858 (High) detected in terser-5.10.0.tgz

## CVE-2022-25858 - High Severity Vulnerability Vulnerable Library - terser-5.10.0.tgz JavaScript parser, mangler/compressor and beautifier toolkit for ES6+ Library home page: https://registry.npmjs.org/terser/-/terser-5.10.0.tgz Path to dependency file: /ui/package.json Path to vulnerable...

security vulnerability