operatorfabric-core
operatorfabric-core copied to clipboard
opfab
Main operatorfabric program
## CVE-2024-38809 - Medium Severity Vulnerability Vulnerable Library - spring-web-6.1.11.jar Spring Web Library home page: https://github.com/spring-projects/spring-framework Path to dependency file: /tools/spring/spring-test-utilities/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.springframework/spring-web/6.1.11/8910d08f15492273543d2c8032b2b895e08ed9e/spring-web-6.1.11.jar Dependency Hierarchy: - spring-security-test-6.3.1.jar...
![mend-bolt-for-github[bot] avatar](https://avatars.githubusercontent.com/in/16809?v=4 "mend-bolt-for-github[bot] avatar"){kind=avatar}
[](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@typescript-eslint/eslint-plugin](https://typescript-eslint.io/packages/eslint-plugin) ([source](https://togithub.com/typescript-eslint/typescript-eslint/tree/HEAD/packages/eslint-plugin)) | [`6.21.0` -> `8.1.0`](https://renovatebot.com/diffs/npm/@typescript-eslint%2feslint-plugin/6.21.0/8.1.0) |...
![renovate[bot] avatar](https://avatars.githubusercontent.com/in/2740?v=4 "renovate[bot] avatar"){kind=avatar}
[](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [eslint-plugin-promise](https://togithub.com/eslint-community/eslint-plugin-promise) | [`6.6.0` -> `7.1.0`](https://renovatebot.com/diffs/npm/eslint-plugin-promise/6.6.0/7.1.0) | [](https://docs.renovatebot.com/merge-confidence/)...
[](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [eslint-config-love](https://togithub.com/mightyiam/eslint-config-love) | [`43.1.0` -> `62.0.0`](https://renovatebot.com/diffs/npm/eslint-config-love/43.1.0/62.0.0) | [](https://docs.renovatebot.com/merge-confidence/)...
[](https://renovatebot.com) This PR contains the following updates: | Package | Change | Age | Adoption | Passing | Confidence | |---|---|---|---|---|---| | [@angular-devkit/build-angular](https://togithub.com/angular/angular-cli) | [`18.1.2` -> `18.2.0`](https://renovatebot.com/diffs/npm/@angular-devkit%2fbuild-angular/18.1.2/18.2.0) | [](https://docs.renovatebot.com/merge-confidence/)...
When all the PR about Moment.js and date-fns are merged, I propose to add : - In release note : - In chapter : Tasks - Text : #6888, #6889,...
## CVE-2024-3653 - Medium Severity Vulnerability Vulnerable Library - undertow-servlet-2.3.13.Final.jar Library home page: http://www.jboss.org Path to dependency file: /services/external-devices/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/io.undertow/undertow-servlet/2.3.13.Final/b1de937a4a6b5c941e5dda5d6a37c86f09103860/undertow-servlet-2.3.13.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/io.undertow/undertow-servlet/2.3.13.Final/b1de937a4a6b5c941e5dda5d6a37c86f09103860/undertow-servlet-2.3.13.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/io.undertow/undertow-servlet/2.3.13.Final/b1de937a4a6b5c941e5dda5d6a37c86f09103860/undertow-servlet-2.3.13.Final.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/io.undertow/undertow-servlet/2.3.13.Final/b1de937a4a6b5c941e5dda5d6a37c86f09103860/undertow-servlet-2.3.13.Final.jar Dependency Hierarchy: - spring-boot-starter-undertow-3.3.2.jar (Root Library)...
In release note, update "dependencies upgrade".
The PR proposed by the bot always fails : https://github.com/opfab/operatorfabric-core/pull/6969
In release notes, update "dependencies upgrade".