Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[WIP] Drop unused LifecycleEvent table #609

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Drop unused LifecycleEvent table

f4d8069
Select commit
Loading
Failed to load commit list.
Open

[WIP] Drop unused LifecycleEvent table #609

Drop unused LifecycleEvent table
f4d8069
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / WhiteSource Security Check failed Oct 3, 2023 in 45m 40s

Security Report

5 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
WS-2023-0224

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-6.0.6.1.gem

Dependency Hierarchy:

-> rspec-rails-5.1.2.gem (Root Library)

   -> ❌ actionpack-6.0.6.1.gem (Vulnerable Library)

High 7.5 actionpack-6.0.6.1.gem Upgrade to version: actionpack - 6.1.5 None
CVE-2023-22795

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-6.0.6.1.gem

Dependency Hierarchy:

-> rspec-rails-5.1.2.gem (Root Library)

   -> ❌ actionpack-6.0.6.1.gem (Vulnerable Library)

High 7.5 actionpack-6.0.6.1.gem Upgrade to version: actionpack - 6.1.7.1, 7.0.4.1 None
CVE-2023-22792

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-6.0.6.1.gem

Dependency Hierarchy:

-> rspec-rails-5.1.2.gem (Root Library)

   -> ❌ actionpack-6.0.6.1.gem (Vulnerable Library)

High 7.5 actionpack-6.0.6.1.gem Upgrade to version: actionpack - 6.1.7.1,7.0.4.1 None
CVE-2023-28362

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-6.0.6.1.gem

Dependency Hierarchy:

-> rspec-rails-5.1.2.gem (Root Library)

   -> ❌ actionpack-6.0.6.1.gem (Vulnerable Library)

Medium 6.1 actionpack-6.0.6.1.gem Upgrade to version: actionpack - 6.1.7.3,7.0.5.1 None
CVE-2023-38037

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/activesupport-6.0.6.1.gem

Dependency Hierarchy:

-> manageiq-style-1.3.3.gem (Root Library)

   -> more_core_extensions-4.4.0.gem

     -> ❌ activesupport-6.0.6.1.gem (Vulnerable Library)

Medium 4.3 activesupport-6.0.6.1.gem Upgrade to version: activesupport - 6.1.7.5,7.0.7.1 None

Base branch total remaining vulnerabilities: 0
Base branch commit: 26c95019f1d3514f8a55afab22ef2732c80e0baa


Total libraries scanned: 54

Scan token: e84b62d077204165ad2590b29542d01c