mend-for-github-com[bot]
mend-for-github-com[bot]
## CVE-2022-4065 - Medium Severity Vulnerability Vulnerable Library - testng-7.5.jar Testing framework for Java Library home page: https://testng.org Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/org.testng/testng/7.5/1416a607fae667c14e390b484e8d02b5824c0674/testng-7.5.jar Dependency Hierarchy:...
## CVE-2024-38808 - Medium Severity Vulnerability Vulnerable Library - spring-expression-5.3.29.jar Spring Expression Language (SpEL) Library home page: https://spring.io/projects/spring-framework Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/org.springframework/spring-expression/5.3.29/44ac795a057c4a6360063801c54a2d148e5a2808/spring-expression-5.3.29.jar Dependency Hierarchy:...
## CVE-2024-38809 - Medium Severity Vulnerability Vulnerable Library - spring-web-5.3.29.jar Spring Web Library home page: https://spring.io/projects/spring-framework Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/5.3.29/4cd333e48d9a05d05c05ae7426242ecfe4cfb681/spring-web-5.3.29.jar Dependency Hierarchy: - jenkins-core-2.426.3.jar...
## CVE-2024-43044 - High Severity Vulnerability Vulnerable Library - jenkins-core-2.426.3.jar Jenkins core code and view files to render HTML. Library home page: https://github.com/jenkinsci/jenkins Path to dependency file: /build.gradle Path to...
## CVE-2022-45688 - High Severity Vulnerability Vulnerable Library - json-20190722.jar JSON is a light-weight, language independent, data interchange format. See http://www.JSON.org/ The files in this package implement JSON encoders/decoders in...
Vulnerable Library - opensearch-testcontainers-2.1.0.jar Path to dependency file: /spring-data-opensearch-starter/build.gradle.kts Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.apache.commons/commons-compress/1.24.0/b4b1b5a3d9573b2970fddab236102c0a4d27d35e/commons-compress-1.24.0.jar Found in HEAD commit: 154c0e1db25410604350f4330990e51cf7e91f0c ## Vulnerabilities | CVE | Severity | CVSS | Dependency |...
Vulnerable Library - setuptools-68.0.0-py3-none-any.whl Easily download, build, install, upgrade, and uninstall Python packages Library home page: https://files.pythonhosted.org/packages/c7/42/be1c7bbdd83e1bfb160c94b9cafd8e25efc7400346cf7ccdbdb452c467fa/setuptools-68.0.0-py3-none-any.whl Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt ## Vulnerabilities |...
Vulnerable Library - urllib3-2.0.7-py3-none-any.whl HTTP library with thread-safe connection pooling, file post, and more. Library home page: https://files.pythonhosted.org/packages/d2/b2/b157855192a68541a91ba7b2bbcb91f1b4faa51f8bae38d8005c034be524/urllib3-2.0.7-py3-none-any.whl Path to dependency file: /sms/verify-signed-sms/requirements.txt Path to vulnerable library: /sms/verify-signed-sms/requirements.txt,/requirements.txt ## Vulnerabilities...
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [vue](https://togithub.com/vuejs/core/tree/main/packages/vue#readme) ([source](https://togithub.com/vuejs/core)) | [`2.7.8` -> `2.7.16`](https://renovatebot.com/diffs/npm/vue/2.7.8/2.7.16) | [](https://docs.renovatebot.com/merge-confidence/) |...
This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@storybook/addon-essentials](https://togithub.com/storybookjs/storybook/tree/next/code/addons/essentials) ([source](https://togithub.com/storybookjs/storybook/tree/HEAD/code/addons/essentials)) | [`7.6.19` -> `7.6.20`](https://renovatebot.com/diffs/npm/@storybook%2faddon-essentials/7.6.19/7.6.20) | [](https://docs.renovatebot.com/merge-confidence/) |...