frugal Java json thrift test

Java json thrift test - DNM

Open danielharasymiw-wf opened this issue 3 years ago • 1 comments

Mar 25 '21 19:03 danielharasymiw-wf

(3) Vulnerable direct dependencies were detected

1 vulns in aiohttp via lib/python/requirements_dev_asyncio.txt

1 vulns in org.apache.thrift:libthrift via examples/java/pom.xml

1 vulns in org.apache.thrift:libthrift via test/integration/java/frugal-integration-test/pom.xml

Review dependencies for available updates
See this Splunk dashboard for more CVE details
Review PR for security impact; comment "security review required" if needed or unsure
Verify aviary.yaml coverage of security relevant code

Questions or Comments? Reach out on Slack: #support-infosec.

Mar 25 '21 19:03 aviary3-wk