mend-for-github-com[bot]
mend-for-github-com[bot]
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more. ## Repository problems These problems occurred while renovating this repository. - WARN: Found renovate...
Vulnerable Library - github.com/temporalio/ringpop-go-6f91b5915e95e7b08817aae78fea3a38ea1b5bd2 Found in HEAD commit: 6035304061a45285210c8cf08471f0fda83afd5a ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type | Fixed in | Remediation Available | | -------------...
Welcome to [Mend for GitHub.com](https://github.com/apps/mend-for-github-com) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light: Mend...
## CVE-2022-34169 - High Severity Vulnerability Vulnerable Library - xalan-2.7.2.jar Xalan-Java is an XSLT processor for transforming XML documents into HTML, text, or other XML document types. It implements XSL...
## CVE-2018-20677 - Medium Severity Vulnerability Vulnerable Libraries - bootstrap-3.3.7.min.js, bootstrap-3.3.7.js bootstrap-3.3.7.min.js The most popular front-end framework for developing responsive, mobile first projects on the web. Library home page: https://cdnjs.cloudflare.com/ajax/libs/twitter-bootstrap/3.3.7/js/bootstrap.min.js...
## CVE-2017-1000034 - High Severity Vulnerability Vulnerable Library - akka-actor_2.11-2.3.13.jar akka-actor Library home page: http://akka.io/ Path to dependency file: /samples/client/petstore/java/retrofit2-play24/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.typesafe.akka/akka-actor_2.11/2.3.13/2d3611639ec786bd963709f210cb9c5cf7cd985e/akka-actor_2.11-2.3.13.jar Dependency Hierarchy: - play-java-ws_2.11-2.4.11.jar (Root...
## CVE-2019-20330 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.6.4.jar, jackson-databind-2.4.5.jar jackson-databind-2.6.4.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path to dependency file:...
## CVE-2020-24750 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.6.4.jar, jackson-databind-2.4.5.jar jackson-databind-2.6.4.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path to dependency file:...
## CVE-2020-1695 - High Severity Vulnerability Vulnerable Libraries - resteasy-jaxrs-3.0.11.Final.jar, resteasy-jaxrs-3.1.3.Final.jar resteasy-jaxrs-3.0.11.Final.jar Resteasy Path to dependency file: /samples/server/petstore/jaxrs-resteasy/eap-joda/build.gradle Path to vulnerable library: /aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/aches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.jboss.resteasy/resteasy-jaxrs/3.0.11.Final/e38927a7ee37a43950d0ca58d63042d14ca93a5f/resteasy-jaxrs-3.0.11.Final.jar Dependency Hierarchy: - :x: **resteasy-jaxrs-3.0.11.Final.jar** (Vulnerable Library)...
## CVE-2020-24616 - High Severity Vulnerability Vulnerable Libraries - jackson-databind-2.4.5.jar, jackson-databind-2.6.4.jar jackson-databind-2.4.5.jar General data-binding functionality for Jackson: works on core streaming API Library home page: http://github.com/FasterXML/jackson Path to dependency file:...