Skip to content

Fix SCA vulnerabilities #279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 7 commits into
base: main
Choose a base branch
from
Open

Fix SCA vulnerabilities #279

wants to merge 7 commits into from

Conversation

@cx-ben-alvo
Copy link
Contributor

@cx-ben-alvo cx-ben-alvo commented Mar 30, 2025

No description provided.

@github-actions
Copy link

github-actions bot commented Mar 30, 2025

Logo
Checkmarx One – Scan Summary & Details8541d14a-621e-44c4-8f8b-e7ab6cad36f5

New Issues (7)

Checkmarx found the following issues in this Pull Request

Severity Issue Source File / Package Checkmarx Insight
CRITICAL CVE-2022-1471 Maven-org.yaml:snakeyaml-1.33 Vulnerable Package
HIGH CVE-2023-51775 Maven-org.bitbucket.b_c:jose4j-0.9.3 Vulnerable Package
HIGH Cx78f40514-81ff Maven-commons-collections:commons-collections-3.2.2 Vulnerable Package
MEDIUM CVE-2012-5783 Maven-commons-httpclient:commons-httpclient-3.1 Vulnerable Package
MEDIUM CVE-2012-6153 Maven-commons-httpclient:commons-httpclient-3.1 Vulnerable Package
MEDIUM CVE-2020-13956 Maven-commons-httpclient:commons-httpclient-3.1 Vulnerable Package
LOW Cxeb68d52e-5509 Maven-commons-codec:commons-codec-1.2 Vulnerable Package

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cx-daniel-greenspan cx-daniel-greenspan Awaiting requested review from cx-daniel-greenspan

@cx-miryam-foifer cx-miryam-foifer Awaiting requested review from cx-miryam-foifer

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cx-ben-alvo @BenAlvo1