mend-for-github-com[bot]
mend-for-github-com[bot]
## CVE-2019-10746 - High Severity Vulnerability Vulnerable Library - mixin-deep-1.3.1.tgz Deeply mix the properties of objects into the first object. Like merge-deep, but doesn't clone. Library home page: https://registry.npmjs.org/mixin-deep/-/mixin-deep-1.3.1.tgz Path...
## CVE-2021-23440 - High Severity Vulnerability Vulnerable Libraries - set-value-0.4.3.tgz, set-value-2.0.0.tgz set-value-0.4.3.tgz Create nested values and any intermediaries using dot notation (`'a.b.c'`) paths. Library home page: https://registry.npmjs.org/set-value/-/set-value-0.4.3.tgz Path to dependency...
## CVE-2019-20149 - High Severity Vulnerability Vulnerable Library - kind-of-6.0.2.tgz Get the native type of a value. Library home page: https://registry.npmjs.org/kind-of/-/kind-of-6.0.2.tgz Path to dependency file: /samples/client/petstore/javascript-es6/package.json Path to vulnerable library:...
This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more. This repository currently has no open or pending branches. ## Detected dependencies None detected
Welcome to [Mend for GitHub.com](https://github.com/apps/mend-for-github-com) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light: Mend...
Welcome to [Mend for GitHub.com](https://github.com/apps/mend-for-github-com) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light: Mend...
Vulnerable Library - github.com/uber-go/tally/v4-v4.1.1 A Go metrics interface with fast buffered metrics and third party reporters Library home page: https://proxy.golang.org/github.com/uber-go/tally/v4/@v/v4.1.1.zip Path to dependency file: /contrib/tally/go.mod Path to vulnerable library: /go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod,/go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod...
Vulnerable Library - golang.org/x/tools-v0.1.10 Library home page: https://proxy.golang.org/golang.org/x/tools/@v/v0.1.10.zip Found in HEAD commit: b5942aefecb0379859bab42b44fa267ca8f3f8d8 ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type | Fixed in | Remediation...
Vulnerable Library - golang.org/x/tools-v0.1.8 Library home page: https://proxy.golang.org/golang.org/x/tools/@v/v0.1.8.zip Found in HEAD commit: b5942aefecb0379859bab42b44fa267ca8f3f8d8 ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type | Fixed in | Remediation...
Vulnerable Library - github.com/temporalio/ui-server/v2-v2.6.2 Golang Server for https://github.com/temporalio/ui Library home page: https://proxy.golang.org/github.com/temporalio/ui-server/v2/@v/v2.6.2.zip Found in HEAD commit: 56f2fecade180afece61567863f71550e21ddd13 ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type |...