mend-bolt-for-github[bot]
mend-bolt-for-github[bot]
Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...
Vulnerable Library - ngx-cms-1.1.0.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/dicer/package.json Found in HEAD commit: 032799b922c55a57249a704eb9e18b1ee7391cbd ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...
Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...
## CVE-2021-38191 - Medium Severity Vulnerability Vulnerable Library - tokio-0.2.25.crate An event-driven, non-blocking I/O platform for writing asynchronous I/O backed applications. Library home page: https://crates.io/api/v1/crates/tokio/0.2.25/download Dependency Hierarchy: - actix-web-3.3.3.crate (Root...
## CVE-2022-23990 - High Severity Vulnerability Vulnerable Library - expat-sys-2.1.6.crate XML parser library written in C Library home page: https://crates.io/api/v1/crates/expat-sys/2.1.6/download Dependency Hierarchy: - amethyst-0.15.3.crate (Root Library) - amethyst_ui-0.15.3.crate - font-kit-0.5.0.crate...
## WS-2020-0368 - Medium Severity Vulnerability Vulnerable Library - libz-sys-1.1.8.crate Low-level bindings to the system libz library (also known as zlib). Library home page: https://crates.io/api/v1/crates/libz-sys/1.1.8/download Dependency Hierarchy: - tensorflow-0.17.0.crate (Root...
## CVE-2021-45340 - Medium Severity Vulnerability Vulnerable Library - glfw-sys-3.3.5.crate An Open Source, multi-platform library for creating windows with OpenGL contexts and receiving input and events Library home page: https://crates.io/api/v1/crates/glfw-sys/3.3.5/download...
## CVE-2022-22827 - High Severity Vulnerability Vulnerable Library - expat-sys-2.1.6.crate XML parser library written in C Library home page: https://crates.io/api/v1/crates/expat-sys/2.1.6/download Dependency Hierarchy: - amethyst-0.15.3.crate (Root Library) - amethyst_ui-0.15.3.crate - font-kit-0.5.0.crate...
## CVE-2022-22826 - High Severity Vulnerability Vulnerable Library - expat-sys-2.1.6.crate XML parser library written in C Library home page: https://crates.io/api/v1/crates/expat-sys/2.1.6/download Dependency Hierarchy: - amethyst-0.15.3.crate (Root Library) - amethyst_ui-0.15.3.crate - font-kit-0.5.0.crate...
## CVE-2021-46143 - High Severity Vulnerability Vulnerable Library - expat-sys-2.1.6.crate XML parser library written in C Library home page: https://crates.io/api/v1/crates/expat-sys/2.1.6/download Dependency Hierarchy: - amethyst-0.15.3.crate (Root Library) - amethyst_ui-0.15.3.crate - font-kit-0.5.0.crate...