mend-for-github-com[bot]

This PR contains the following updates: | Package | Update | Change | |---|---|---| | [tzinfo](https://tzinfo.github.io) ([source](https://redirect.github.com/tzinfo/tzinfo), [changelog](https://redirect.github.com/tzinfo/tzinfo/blob/master/CHANGES.md)) | major | `"~> 1.2"` -> `"~> 2.0"` | --- ### Release...

## CVE-2024-33883 - High Severity Vulnerability Vulnerable Library - ejs-3.1.7.tgz Embedded JavaScript templates Library home page: https://registry.npmjs.org/ejs/-/ejs-3.1.7.tgz Path to dependency file: /package.json Path to vulnerable library: /node_modules/ejs/package.json Dependency Hierarchy: -...

# Code Security Report ### Scan Metadata **Latest Scan:** 2024-09-27 09:49pm **Total Findings:** 28 | **New Findings:** 0 | **Resolved Findings:** 0 **Tested Project Files:** 134 **Detected Programming Languages:** 2...

Vulnerable Library - torch-1.13.1-cp37-cp37m-manylinux1_x86_64.whl Tensors and Dynamic neural networks in Python with strong GPU acceleration Library home page: https://files.pythonhosted.org/packages/00/86/77a9eddbf46f1bca2468d16a401911f58917f95b63402d6a7a4522521e5d/torch-1.13.1-cp37-cp37m-manylinux1_x86_64.whl Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt ##...

Vulnerable Library - tqdm-4.66.1-py3-none-any.whl Fast, Extensible Progress Meter Library home page: https://files.pythonhosted.org/packages/00/e5/f12a80907d0884e6dff9c16d0c0114d81b8cd07dc3ae54c5e962cc83037e/tqdm-4.66.1-py3-none-any.whl Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt ## Vulnerabilities | CVE | Severity | CVSS...

Welcome to [Mend for GitHub.com](https://github.com/apps/mend-for-github-com) (formerly WhiteSource). This is an onboarding PR to help you understand and configure settings before Mend starts scanning your repository for security vulnerabilities. :vertical_traffic_light: Mend...

Vulnerable Library - ipython-7.34.0-py3-none-any.whl IPython: Productive Interactive Computing Library home page: https://files.pythonhosted.org/packages/7c/6a/1f1365f4bf9fcb349fcaa5b61edfcefa721aa13ff37c5631296b12fab8e5/ipython-7.34.0-py3-none-any.whl Found in HEAD commit: 721c85d8c1c7916ebe7351559bf0e1dc82e35aea ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type |...

Vulnerable Library - Pygments-2.13.0-py3-none-any.whl Pygments is a syntax highlighting package written in Python. Library home page: https://files.pythonhosted.org/packages/4f/82/672cd382e5b39ab1cd422a672382f08a1fb3d08d9e0c0f3707f33a52063b/Pygments-2.13.0-py3-none-any.whl Found in HEAD commit: 721c85d8c1c7916ebe7351559bf0e1dc82e35aea ## Vulnerabilities | CVE | Severity | CVSS...

Vulnerable Library - aiohttp-3.8.3-cp310-cp310-macosx_10_9_universal2.whl Async http client/server framework (asyncio) Library home page: https://files.pythonhosted.org/packages/80/90/e7d60427dfa15b0f3748d6fbb50cc6b0f29112f4f04d8354ac02f65683e1/aiohttp-3.8.3-cp310-cp310-macosx_10_9_universal2.whl Found in HEAD commit: 721c85d8c1c7916ebe7351559bf0e1dc82e35aea ## Vulnerabilities | CVE | Severity | CVSS | Dependency | Type...

Vulnerable Library - numpy-1.21.6-cp310-cp310-macosx_10_9_universal2.whl NumPy is the fundamental package for array computing with Python. Library home page: https://files.pythonhosted.org/packages/ff/c6/05ae3c7f75b596e1bb3d78131c331eada9376a03d1af9801bd40e4675023/numpy-1.21.6-cp310-cp310-macosx_10_9_universal2.whl Found in HEAD commit: 721c85d8c1c7916ebe7351559bf0e1dc82e35aea ## Vulnerabilities | CVE | Severity |...