mend-for-github-com[bot] issues

Results 1661 issues of


                                            mend-for-github-com[bot]

Update dependency com.google.guava:guava to v33.3.0-jre

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [com.google.guava:guava](https://togithub.com/google/guava) | `33.2.1-jre` -> `33.3.0-jre` | [![age](https://developer.mend.io/api/mc/badges/age/maven/com.google.guava:guava/33.3.0-jre?slim=true)](https://docs.renovatebot.com/merge-confidence/) | [![adoption](https://developer.mend.io/api/mc/badges/adoption/maven/com.google.guava:guava/33.3.0-jre?slim=true)](https://docs.renovatebot.com/merge-confidence/)...

backport 2.x

skip-changelog

Update dependency org.junit.jupiter:junit-jupiter to v5.11.0

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [org.junit.jupiter:junit-jupiter](https://junit.org/junit5/) ([source](https://togithub.com/junit-team/junit5)) | `5.10.3` -> `5.11.0` | [![age](https://developer.mend.io/api/mc/badges/age/maven/org.junit.jupiter:junit-jupiter/5.11.0?slim=true)](https://docs.renovatebot.com/merge-confidence/) |...

backport 2.x

skip-changelog

Update dependency gradle to v8.10

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [gradle](https://gradle.org) ([source](https://togithub.com/gradle/gradle)) | minor | `8.9` -> `8.10` | --- ### Release Notes gradle/gradle (gradle)...

backport 2.x

skip-changelog

Update dependency org.eclipse:yasson to v3.0.4

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [org.eclipse:yasson](https://projects.eclipse.org/projects/ee4j.yasson) ([source](https://togithub.com/eclipse-ee4j/yasson)) | `3.0.3` -> `3.0.4` | [![age](https://developer.mend.io/api/mc/badges/age/maven/org.eclipse:yasson/3.0.4?slim=true)](https://docs.renovatebot.com/merge-confidence/) |...

backport 2.x

skip-changelog

fix(deps): update dependency org.slf4j:slf4j-api to v2.0.17

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [org.slf4j:slf4j-api](http://www.slf4j.org) ([source](https://redirect.github.com/qos-ch/slf4j), [changelog](https://www.slf4j.org/news.html)) | `2.0.13` -> `2.0.17` | [![age](https://developer.mend.io/api/mc/badges/age/maven/org.slf4j:slf4j-api/2.0.17?slim=true)](https://docs.renovatebot.com/merge-confidence/)...

backport 1.x

distinguished-contributor

fix(deps): update junit5 monorepo

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [org.junit.platform:junit-platform-launcher](https://junit.org/junit5/) ([source](https://togithub.com/junit-team/junit5)) | `1.10.3` -> `1.11.2` | [![age](https://developer.mend.io/api/mc/badges/age/maven/org.junit.platform:junit-platform-launcher/1.11.2?slim=true)](https://docs.renovatebot.com/merge-confidence/) |...

backport 1.x

distinguished-contributor

fix(deps): update dependency commons-logging:commons-logging to v1.3.4

This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [commons-logging:commons-logging](https://commons.apache.org/proper/commons-logging/) ([source](https://gitbox.apache.org/repos/asf/commons-logging)) | `1.3.3` -> `1.3.4` | [![age](https://developer.mend.io/api/mc/badges/age/maven/commons-logging:commons-logging/1.3.4?slim=true)](https://docs.renovatebot.com/merge-confidence/) |...

backport 1.x

distinguished-contributor

chore(deps): update gradle to v8.14.3

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [gradle](https://gradle.org) ([source](https://redirect.github.com/gradle/gradle)) | minor | `8.9` -> `8.14.3` | --- ### Release Notes gradle/gradle (gradle)...

backport 1.x

distinguished-contributor

CVE-2024-35195 (Medium) detected in requests-2.31.0-py3-none-any.whl

## CVE-2024-35195 - Medium Severity Vulnerability Vulnerable Library - requests-2.31.0-py3-none-any.whl Python HTTP for Humans. Library home page: https://files.pythonhosted.org/packages/70/8e/0e2d847013cb52cd35b38c009bb167a1a26b2ce6cd6965bf26b47bc0bf44/requests-2.31.0-py3-none-any.whl Path to dependency file: /tmp/ws-scm/opensearch-py-ml Path to vulnerable library: /tmp/ws-scm/opensearch-py-ml,/requirements.txt Dependency Hierarchy:...

Mend: dependency security vulnerability

fork-ts-checker-webpack-plugin-6.5.3.tgz: 1 vulnerabilities (highest severity is: 7.5)

Vulnerable Library - fork-ts-checker-webpack-plugin-6.5.3.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/braces/package.json Found in HEAD commit: bbca6f5de4b03c3c57a1333400bba2178b3aa99e ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...

Mend: dependency security vulnerability