frugal
frugal copied to clipboard
TEST: uuid v3
DO NOT MERGE. This PR adds a dependency override to uuid 3 to test whether this repo is compatible with it.
For more info, reach out to #support-frontend-architecture
on Slack.
Security Insights
(5) Vulnerable direct dependencies were detected
aiohttp via lib/python/requirements_dev_asyncio.txt
org.apache.thrift:libthrift via lib/java/pom.xml
org.apache.thrift:libthrift via test/integration/java/frugal-integration-test/pom.xml
org.nanohttpd:nanohttpd
via test/integration/java/frugal-integration-test/pom.xml
with no fix reported by GitHubgithub.com/nats-io/nats-server/v2 via lib/go/go.mod
Action Items
- Review dependencies for available updates
- See this Splunk dashboard for more CVE details
- Review PR for security impact; comment "security review required" if needed or unsure
- Verify
aviary.yaml
coverage of security relevant code
Questions or Comments? Reach out on Slack: #support-infosec.