wazuh-qa Wazuh-QA Dependant-bot suggests to merge Cryptography bump PR from 3.3.2 to 41.0.6

Wazuh-QA Dependant-bot suggests to merge Cryptography bump PR from 3.3.2 to 41.0.6

Open pro-akim opened this issue 10 months ago • 1 comments

Alert in Wazuh-QA Dependant-bot was found:

It seems that by merging the mentioned PR, cryptography vulnerabilities will disappear

[ ] Analyze the convenience of its implementation
[ ] Evaluate risks
[ ] merge if it is correct

Apr 19 '24 09:04 pro-akim

The bot created the original PR on Nov 28, 2023, this issue has not been worked on in a long time, we need to work on it but we have other issues with higher priorities, I propose adding the issue to the qa_known label and address it in the future

Apr 22 '24 13:04 rauldpm

wazuh-qa wazuh-qa copied to clipboard

Wazuh-QA Dependant-bot suggests to merge Cryptography bump PR from 3.3.2 to 41.0.6

wazuh-qa
wazuh-qa copied to clipboard