Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

[AUTO] Increment version to 1.3.19-SNAPSHOT #2840

Merged
merged 1 commit into from
Aug 19, 2024

Increment version to 1.3.19-SNAPSHOT

768f1e9
Select commit
Loading
Failed to load commit list.
Merged

[AUTO] Increment version to 1.3.19-SNAPSHOT #2840

Increment version to 1.3.19-SNAPSHOT
768f1e9
Select commit
Loading
Failed to load commit list.
Mend for github.com / WhiteSource Security Check failed Jul 18, 2024 in 6m 46s

Security Report

4 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-39684

Vulnerable Source Files:

❌ /sql-odbc/libraries/rapidjson/include/rapidjson/reader.h

 High 7.8 rapidjsonv1.1.0 None
CVE-2024-38517

Vulnerable Source Files:

❌ /sql-odbc/libraries/rapidjson/include/rapidjson/reader.h

 High 7.8 rapidjsonv1.1.0 None
CVE-2024-35195

Path to dependency file: /sql-cli

Path to vulnerable library: /sql-cli

Dependency Hierarchy:

-> requests_aws4auth-0.9-py2.py3-none-any.whl (Root Library)

   -> ❌ requests-2.31.0-py3-none-any.whl (Vulnerable Library)

Medium 5.6 requests-2.31.0-py3-none-any.whl Upgrade to version: requests - 2.32.2 None
CVE-2022-40896

Path to dependency file: /sql-cli

Path to vulnerable library: /sql-cli

Dependency Hierarchy:

-> ❌ Pygments-2.11.1-py3-none-any.whl (Vulnerable Library)

Medium 5.5 Pygments-2.11.1-py3-none-any.whl Upgrade to version: pygments - 2.15.0 None

Base branch total remaining vulnerabilities: 1
Base branch commit: a151a7d4484134afb597473871a56a831ffbf323


Total libraries scanned: 30

Scan token: 3546c04163c24fa3964dbe1a30e4881a

View more details on Mend for github.com