mend-bolt-for-github[bot]

Results 3408 issues of mend-bolt-for-github[bot]

CVE-2021-23495 (Medium) detected in karma-6.3.3.tgz

## CVE-2021-23495 - Medium Severity Vulnerability Vulnerable Library - karma-6.3.3.tgz Spectacular Test Runner for JavaScript. Library home page: https://registry.npmjs.org/karma/-/karma-6.3.3.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/karma/package.json Dependency...

security vulnerability

CVE-2020-7656 (Medium) detected in jquery-1.7.1.min.js, jquery-1.4.4.min.js

## CVE-2020-7656 - Medium Severity Vulnerability Vulnerable Libraries - jquery-1.7.1.min.js, jquery-1.4.4.min.js jquery-1.7.1.min.js JavaScript library for DOM operations Library home page: https://cdnjs.cloudflare.com/ajax/libs/jquery/1.7.1/jquery.min.js Path to dependency file: /node_modules/sockjs/examples/echo/index.html Path to vulnerable library:...

security vulnerability

CVE-2015-9251 (Medium) detected in jquery-1.4.4.min.js, jquery-1.7.1.min.js

## CVE-2015-9251 - Medium Severity Vulnerability Vulnerable Libraries - jquery-1.4.4.min.js, jquery-1.7.1.min.js jquery-1.4.4.min.js JavaScript library for DOM operations Library home page: https://cdnjs.cloudflare.com/ajax/libs/jquery/1.4.4/jquery.min.js Path to dependency file: /node_modules/selenium-webdriver/lib/test/data/selectableItems.html Path to vulnerable library:...

security vulnerability

CVE-2022-0437 (Medium) detected in karmav6.3.4, karma-6.3.3.tgz

## CVE-2022-0437 - Medium Severity Vulnerability Vulnerable Libraries - karmav6.3.4, karma-6.3.3.tgz karma-6.3.3.tgz Spectacular Test Runner for JavaScript. Library home page: https://registry.npmjs.org/karma/-/karma-6.3.3.tgz Path to dependency file: /package.json Path to vulnerable library:...

security vulnerability

CVE-2022-29162 (High) detected in github.com/opencontainers/runc-v1.1.0

## CVE-2022-29162 - High Severity Vulnerability Vulnerable Library - github.com/opencontainers/runc-v1.1.0 CLI tool for spawning and running containers according to the OCI specification Dependency Hierarchy: - github.com/docker/cli-v20.10.14 (Root Library) - github.com/moby/moby-v20.10.17...

security vulnerability

CVE-2022-21698 (High) detected in github.com/docker/cli-v20.10.14

## CVE-2022-21698 - High Severity Vulnerability Vulnerable Library - github.com/docker/cli-v20.10.14 The Docker CLI Dependency Hierarchy: - :x: **github.com/docker/cli-v20.10.14** (Vulnerable Library) Found in HEAD commit: d72fd2ed483381c209571e3bbffcdfe89da3adc3 Found in base branch: main...

security vulnerability

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

WS-2022-0161 (High) detected in multiple libraries

## WS-2022-0161 - High Severity Vulnerability Vulnerable Libraries - microsoft.extensions.apidescription.server.3.0.0.nupkg, newtonsoft.json.11.0.2.nupkg, coverlet.collector.1.0.1.nupkg, microsoft.visualstudio.azure.containers.tools.targets.1.10.8.nupkg, newtonsoft.json.12.0.2.nupkg microsoft.extensions.apidescription.server.3.0.0.nupkg MSBuild tasks and targets for build-time Swagger and OpenApi document generation This package was b......

security vulnerability

Configure WhiteSource Bolt for GitHub

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

Configure WhiteSource Bolt for GitHub

1 comment

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...