mend-bolt-for-github[bot]

## CVE-2024-47764 - Medium Severity Vulnerability Vulnerable Library - cookie-0.3.1.tgz HTTP server cookie parsing and serialization Library home page: https://registry.npmjs.org/cookie/-/cookie-0.3.1.tgz Path to dependency file: /day59/package.json Path to vulnerable library: /day59/package.json,/day60/package.json...

## CVE-2024-43800 - Medium Severity Vulnerability Vulnerable Library - serve-static-1.13.2.tgz Serve static files Library home page: https://registry.npmjs.org/serve-static/-/serve-static-1.13.2.tgz Path to dependency file: /day59/package.json Path to vulnerable library: /day59/package.json,/day60/package.json Dependency Hierarchy: -...

## CVE-2024-43799 - Medium Severity Vulnerability Vulnerable Library - send-0.16.2.tgz Better streaming static file server with Range and conditional-GET support Library home page: https://registry.npmjs.org/send/-/send-0.16.2.tgz Path to dependency file: /day59/package.json Path...

## CVE-2024-45296 - High Severity Vulnerability Vulnerable Library - path-to-regexp-1.8.0.tgz Express style path to RegExp utility Library home page: https://registry.npmjs.org/path-to-regexp/-/path-to-regexp-1.8.0.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/path-to-regexp/package.json...

Welcome to [Mend Bolt for GitHub](https://github.com/apps/mend-bolt-for-github) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light:...

Vulnerable Library - hive-1.0.0.tgz Path to dependency file: /package.json Path to vulnerable library: /package.json Found in HEAD commit: 1c2357b3e9ae4bf59ca20c4ab740b9a1762fe962 ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...

## CVE-2024-6119 - High Severity Vulnerability Vulnerable Library - cryptography-38.0.1-cp36-abi3-manylinux_2_24_x86_64.whl cryptography is a package which provides cryptographic recipes and primitives to Python developers. Library home page: https://files.pythonhosted.org/packages/9b/4e/d7454551c3c7b327510e35d88db35c300484225ba47be861e28f0b520b33/cryptography-38.0.1-cp36-abi3-manylinux_2_24_x86_64.whl Path to dependency...

## CVE-2024-39689 - High Severity Vulnerability Vulnerable Library - certifi-2022.6.15-py3-none-any.whl Python package for providing Mozilla's CA Bundle. Library home page: https://files.pythonhosted.org/packages/e9/06/d3d367b7af6305b16f0d28ae2aaeb86154fa91f144f036c2d5002a5a202b/certifi-2022.6.15-py3-none-any.whl Path to dependency file: /requirements.txt Path to vulnerable library:...

## CVE-2024-41810 - Medium Severity Vulnerability Vulnerable Library - Twisted-22.4.0-py3-none-any.whl An asynchronous networking framework written in Python Library home page: https://files.pythonhosted.org/packages/db/99/38622ff95bb740bcc991f548eb46295bba62fcb6e907db1987c4d92edd09/Twisted-22.4.0-py3-none-any.whl Path to dependency file: /requirements.txt Path to vulnerable library:...

## CVE-2024-41671 - High Severity Vulnerability Vulnerable Library - Twisted-22.4.0-py3-none-any.whl An asynchronous networking framework written in Python Library home page: https://files.pythonhosted.org/packages/db/99/38622ff95bb740bcc991f548eb46295bba62fcb6e907db1987c4d92edd09/Twisted-22.4.0-py3-none-any.whl Path to dependency file: /requirements.txt Path to vulnerable library:...