mend-bolt-for-github[bot]

Results 3422 issues of


                                            mend-bolt-for-github[bot]

react-scripts-4.0.3.tgz: 47 vulnerabilities (highest severity is: 9.8)

Vulnerable Library - react-scripts-4.0.3.tgz Path to dependency file: /blockchain_integration/pi_network/PiSure/client/package.json Path to vulnerable library: /blockchain_integration/pi_network/contracts/node_modules/sha.js/package.json,/blockchain_integration/pi_network/node_modules/ganache-cli/node_modules/sha.js/package.json,/blockchain_integration/pi_network/smartship/node_modules/sha.js/package.json,/blockchain_integration/pi_network/pi-browser-app/node_modules/sha.js/package.json,/blockchain_integration/pi_network/pi-network-interoperability/node_modules/sha.js/package.json,/blockchain_integration/pi_network/contracts/PI-bank/node_modules/sha.js/package.json,/blockchain_integration/pi_network/SpacePi/node_modules/sha.js/package.json,/projects/oracle-nexus/node_modules/sha.js/package.json,/blockchain_integration/pi_network/PiSure/client/node_modules/sha.js/package.json,/blockchain_integration/pi_network/pi-browser-app/apps/AstralPlane/node_modules/sha.js/package.json,/blockchain_integration/pi_network/node_modules/sha.js/package.json,/blockchain_integration/pi_network/PiRide/node_modules/sha.js/package.json,/blockchain_integration/pi_network/PiSure/contracts/node_modules/sha.js/package.json,/sidra_chain_integration/advanced-features/blockchain-based-identity-verification/backend/node_modules/sha.js/package.json Found in HEAD commit: 011e5f9d5ce310049a1a68c19f7df65be4f88caf ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability

bootstrap-4.0.0.min.js: 5 vulnerabilities (highest severity is: 6.4)

Vulnerable Library - bootstrap-4.0.0.min.js The most popular front-end framework for developing responsive, mobile first projects on the web. Library home page: https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/4.0.0/js/bootstrap.min.js Path to dependency file: /blockchain_integration/pi_network/PiFusion/pi_fusion_dashboard/templates/base.html Path to vulnerable...

Mend: dependency security vulnerability

hardhat-2.22.8.tgz: 1 vulnerabilities (highest severity is: 7.5)

2

comment

Vulnerable Library - hardhat-2.22.8.tgz Path to dependency file: /blockchain_integration/pi_network/contracts/PI-bank/package.json Path to vulnerable library: /projects/oracle-nexus/node_modules/ws/package.json,/blockchain_integration/pi_network/PiSure/contracts/node_modules/@ethersproject/providers/node_modules/ws/package.json,/blockchain_integration/pi_network/SpacePi/node_modules/@ethersproject/providers/node_modules/ws/package.json,/blockchain_integration/pi_network/pi-network-interoperability/node_modules/ws/package.json,/blockchain_integration/pi_network/contracts/PI-bank/node_modules/ws/package.json,/blockchain_integration/pi_network/node_modules/@ethersproject/providers/node_modules/ws/package.json,/blockchain_integration/pi_network/contracts/node_modules/@ethersproject/providers/node_modules/ws/package.json Found in HEAD commit: d3541aa3e3fabe96b343bad4a2627e5d1fbf8c36 ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability

actions-on-google-2.14.0.tgz: 19 vulnerabilities (highest severity is: 8.6)

2

comment

Vulnerable Library - actions-on-google-2.14.0.tgz Path to dependency file: /projects/PiWalletBot/package.json Path to vulnerable library: /blockchain_integration/pi_network/PiSure/client/node_modules/node-forge/package.json,/projects/PiWalletBot/node_modules/node-forge/package.json,/blockchain_integration/pi_network/pi-browser-app/node_modules/node-forge/package.json Found in HEAD commit: 011e5f9d5ce310049a1a68c19f7df65be4f88caf ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability

truffle-plugin-verify-0.5.33.tgz: 5 vulnerabilities (highest severity is: 7.5)

6

comment

Vulnerable Library - truffle-plugin-verify-0.5.33.tgz Path to dependency file: /blockchain_integration/pi_network/contracts/PI-bank/package.json Path to vulnerable library: /blockchain_integration/pi_network/contracts/PI-bank/node_modules/truffle-plugin-verify/node_modules/axios/package.json Found in HEAD commit: 011e5f9d5ce310049a1a68c19f7df65be4f88caf ## Vulnerabilities | Vulnerability | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability

openzeppelin-solidity-2.5.1.tgz: 1 vulnerabilities (highest severity is: 5.3)

Vulnerable Library - openzeppelin-solidity-2.5.1.tgz Secure Smart Contract library for Solidity Library home page: https://registry.npmjs.org/openzeppelin-solidity/-/openzeppelin-solidity-2.5.1.tgz Path to dependency file: /blockchain_integration/pi_network/contracts/package.json Path to vulnerable library: /blockchain_integration/pi_network/contracts/node_modules/openzeppelin-solidity/package.json Found in HEAD commit: d3541aa3e3fabe96b343bad4a2627e5d1fbf8c36 ##...

Mend: dependency security vulnerability

jquery-3.2.1.slim.min.js: 2 vulnerabilities (highest severity is: 6.9)

2

comment

Vulnerable Library - jquery-3.2.1.slim.min.js JavaScript library for DOM operations Library home page: https://cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.slim.min.js Path to dependency file: /blockchain_integration/pi_network/PiFusion/pi_fusion_dashboard/templates/base.html Path to vulnerable library: /blockchain_integration/pi_network/PiFusion/pi_fusion_dashboard/templates/base.html Found in HEAD commit: 011e5f9d5ce310049a1a68c19f7df65be4f88caf ## Vulnerabilities...

Mend: dependency security vulnerability

web3-1.3.4.min.js: 1 vulnerabilities (highest severity is: 3.3)

2

comment

Vulnerable Library - web3-1.3.4.min.js Ethereum JavaScript API Library home page: https://cdnjs.cloudflare.com/ajax/libs/web3/1.3.4/web3.min.js Path to dependency file: /sidra_chain_integration/dex-project/dex/index.html Path to vulnerable library: /sidra_chain_integration/dex-project/dex/index.html Found in HEAD commit: 011e5f9d5ce310049a1a68c19f7df65be4f88caf ## Vulnerabilities | Vulnerability...

Mend: dependency security vulnerability

eternalcombat-api-1.3.0: 12 vulnerabilities (highest severity is: 9.8)

Vulnerable Library - eternalcombat-api-1.3.0 Path to dependency file: /eternalcombat-plugin/build.gradle.kts Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.code.gson/gson/2.8.0/c4ba5371a29ac9b2ad6129b1d39ea38750043eff/gson-2.8.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.code.gson/gson/2.8.0/c4ba5371a29ac9b2ad6129b1d39ea38750043eff/gson-2.8.0.jar Found in HEAD commit: ebf6c13d40931fbd44679f88f3cce8713eb697ef ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability

axios-0.25.0.tgz: 4 vulnerabilities (highest severity is: 7.5)

1

comment

Vulnerable Library - axios-0.25.0.tgz Promise based HTTP client for the browser and node.js Library home page: https://registry.npmjs.org/axios/-/axios-0.25.0.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/axios/package.json Found in HEAD...

Mend: dependency security vulnerability

‹
1
2
...
285
286
287
288
289
290
291
...
342
343
›