opencspm
opencspm copied to clipboard
OpenCSPM
Open Cloud Security Posture Management Engine
Bumps [url-parse](https://github.com/unshiftio/url-parse) from 1.5.1 to 1.5.7. Commits 8b3f5f2 1.5.7 ef45a13 [fix] Readd the empty userinfo to url.href (#226) 88df234 [doc] Add soft deprecation notice 78e9f2f [security] Fix nits e6fa434 [security]...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.13.2 to 1.14.8. Commits 3d81dc3 Release version 1.14.8 of the npm package. 62e546a Drop confidential headers across schemes. 2ede36d Release version 1.14.7 of the npm package. 8b347cb...
Bumps [puma](https://github.com/puma/puma) from 4.3.8 to 4.3.11. Release notes Sourced from puma's releases. 4.3.10 Re-allows UTF-8 in HTTP header values 4.3.9 https://github.com/puma/puma/security/advisories/GHSA-48w2-rm65-62xx Changelog Sourced from puma's changelog. 4.3.11 / 2022-02-11 Security...
Bumps [sidekiq](https://github.com/mperham/sidekiq) from 6.2.1 to 6.4.0. Changelog Sourced from sidekiq's changelog. 6.4.0 SECURITY: Validate input to avoid possible DoS in Web UI. Add strict argument checking #5071 Sidekiq will now...
Bumps [marked](https://github.com/markedjs/marked) from 2.0.3 to 4.0.10. Release notes Sourced from marked's releases. v4.0.10 4.0.10 (2022-01-13) Bug Fixes security: fix redos vulnerabilities (8f80657) v4.0.9 4.0.9 (2022-01-06) Bug Fixes retain line breaks...
**Describe the bug** While trying to run the full environment locally on Windows, the following error regarding the vim package is occurring. **error:** => ERROR [ 7/12] RUN apt-get update...
**Describe the bug** I followed the instructions to collect data using aws_recon and also followed the changes on this issue #78 but I am getting the following errors when i...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri) from 1.11.5 to 1.12.5. Release notes Sourced from nokogiri's releases. 1.12.5 / 2021-09-27 Security [JRuby] Address CVE-2021-41098 (GHSA-2rr5-8q37-2w7h). In Nokogiri v1.12.4 and earlier, on JRuby only, the SAX...
Bumps [path-parse](https://github.com/jbgutierrez/path-parse) from 1.0.6 to 1.0.7. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [addressable](https://github.com/sporkmonger/addressable) from 2.7.0 to 2.8.0. Changelog Sourced from addressable's changelog. Addressable 2.8.0 fixes ReDoS vulnerability in Addressable::Template#match no longer replaces + with spaces in queries for non-http(s) schemes fixed...