katalium

katalium copied to clipboard

This PR was automatically created by Snyk using the credentials of a real user.Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of...

tructran273

Bumps [testng](https://github.com/cbeust/testng) from 6.14.3 to 7.5.1. Release notes Sourced from testng's releases. TestNG v7.5.1 What's Changed Cherrypick Zip Slip Vulnerability to 7.5 release by @​prashil-g in cbeust/testng#2899 New Contributors @​prashil-g...

dependabot[bot]

Bumps [jackson-databind](https://github.com/FasterXML/jackson) from 2.9.10.5 to 2.12.7.1. Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter...

dependabot[bot]

[Snyk] Upgrade org.apache.httpcomponents:httpclient from 4.5.6 to 4.5.13

1

Snyk has created this PR to upgrade org.apache.httpcomponents:httpclient from 4.5.6 to 4.5.13. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify...

snyk-bot

[Snyk] Upgrade org.apache.httpcomponents:httpmime from 4.5.6 to 4.5.13

1

Snyk has created this PR to upgrade org.apache.httpcomponents:httpmime from 4.5.6 to 4.5.13. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify...

snyk-bot

[Snyk] Upgrade com.github.sbabcoc:logback-testng from 1.0.0 to 1.3.2

1

Snyk has created this PR to upgrade com.github.sbabcoc:logback-testng from 1.0.0 to 1.3.2. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify...

snyk-bot

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-core from 2.9.8 to 2.12.3

1

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-core from 2.9.8 to 2.12.3. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify...

snyk-bot

[Snyk] Upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.10.5 to 2.12.3

1

Snyk has created this PR to upgrade com.fasterxml.jackson.core:jackson-databind from 2.9.10.5 to 2.12.3. :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify...

snyk-bot

Bump httpclient from 4.5.6 to 4.5.13

1

Bumps httpclient from 4.5.6 to 4.5.13. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...

dependabot[bot]

Configure WhiteSource Bolt for GitHub

1

Welcome to [WhiteSource Bolt for GitHub](https://github.com/marketplace/whitesource-bolt)! This is an onboarding PR to help you understand and configure settings before WhiteSource starts scanning your repository for security vulnerabilities. :vertical_traffic_light: WhiteSource Bolt...

mend-bolt-for-github[bot]