Skip to content

Update pom.xml #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
raanand-hw wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Update pom.xml #2

raanand-hw wants to merge 2 commits into from

Conversation

@raanand-hw
Copy link
Owner

@raanand-hw raanand-hw commented Jan 4, 2023

No description provided.

@github-actions
Copy link

github-actions bot commented Jan 4, 2023

❌ Found dependencies violating policy!

Policies Violated Dependency License(s) Vulnerabilities Short Term Recommended Upgrade Long Term Recommended Upgrade
P3 SnakeYAML 1.21 Apache License 2.0 ❌   CVE-2022-41854 MEDIUM: CVSS 6.5
❌   CVE-2022-38751 MEDIUM: CVSS 6.5
❌   CVE-2022-38752 MEDIUM: CVSS 6.5
❌   CVE-2022-38749 MEDIUM: CVSS 6.5
❌   CVE-2022-38750 MEDIUM: CVSS 5.5
CVE-2022-25857 HIGH: CVSS 7.5
CVE-2017-18640 HIGH: CVSS 7.5		 1.33.0.redhat-00001 (0 known vulnerabilities) 20100901 (0 known vulnerabilities)
P3
Architecture-Cleanup		 JUnit 4.12 Eclipse Public License 1.0 ❌   CVE-2020-15250 MEDIUM: CVSS 5.5 4.13.2 (0 known vulnerabilities) F-13-start (0 known vulnerabilities)
P3
Architecture-Cleanup		 Apache Ant 1.10.3 Apache License 2.0 ❌   CVE-2021-36374 MEDIUM: CVSS 5.5
❌   CVE-2021-36373 MEDIUM: CVSS 5.5
CVE-2020-11979 HIGH: CVSS 7.5
❌   CVE-2020-1945 MEDIUM: CVSS 6.3		 dotnet_10beta1 (0 known vulnerabilities) preview_20041022 (0 known vulnerabilities)
P3 Bootstrap (Twitter) 3.3.7 MIT License ❌   CVE-2019-8331 MEDIUM: CVSS 6.1
❌   CVE-2018-20677 MEDIUM: CVSS 6.1
❌   CVE-2018-20676 MEDIUM: CVSS 6.1
❌   CVE-2016-10735 MEDIUM: CVSS 6.1
❌   CVE-2018-14042 MEDIUM: CVSS 6.1
❌   CVE-2018-14040 MEDIUM: CVSS 6.1
❌   CVE-2018-14041 MEDIUM: CVSS 6.1		 3.4.3 (0 known vulnerabilities) 11.0.0 (0 known vulnerabilities)
P3 Apache HttpClient 4.0.2 Apache License 2.0 ❌   CVE-2020-13956 MEDIUM: CVSS 5.3
❌   CVE-2015-5262 MEDIUM: CVSS 4.3
❌   CVE-2012-6153 MEDIUM: CVSS 4.3
❌   CVE-2014-3577 MEDIUM: CVSS 5.8
❌   CVE-2011-1498 MEDIUM: CVSS 4.3		 4.5.14 (0 known vulnerabilities) 20020423 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 jQuery 1.11.1 MIT License ❌   CVE-2020-11022 MEDIUM: CVSS 6.1
❌   CVE-2020-11023 MEDIUM: CVSS 6.1
❌   CVE-2019-11358 MEDIUM: CVSS 6.1
❌   CVE-2015-9251 MEDIUM: CVSS 6.1		 1.12.4.1 (0 known vulnerabilities) 3.6.3 (0 known vulnerabilities)
P3
Architecture-Cleanup		 Apache Ant 1.10.3 Apache License 2.0 ❌   CVE-2021-36374 MEDIUM: CVSS 5.5
❌   CVE-2021-36373 MEDIUM: CVSS 5.5
CVE-2020-11979 HIGH: CVSS 7.5
❌   CVE-2020-1945 MEDIUM: CVSS 6.3		 dotnet_10beta1 (0 known vulnerabilities) preview_20041022 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P4 google-guava v28.2 Apache License 2.0 ❌   CVE-2020-8908 LOW: CVSS 3.3 snap.2010.09.15 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
Architecture-Cleanup TestNG 7.3.0 Apache License 2.0 7.7.1 (0 known vulnerabilities) 1339 (0 known vulnerabilities)
P3 Netty Project 4.1.50.Final Apache License 2.0 ❌   CVE-2022-41915 MEDIUM: CVSS 6.5
CVE-2022-41881 HIGH: CVSS 7.5
❌   CVE-2022-24823 MEDIUM: CVSS 5.5
❌   CVE-2021-43797 MEDIUM: CVSS 6.5
CVE-2021-37137 HIGH: CVSS 7.5
CVE-2021-37136 HIGH: CVSS 7.5
❌   CVE-2021-21409 MEDIUM: CVSS 5.9
❌   CVE-2021-21295 MEDIUM: CVSS 5.9
❌   CVE-2021-21290 MEDIUM: CVSS 5.5		 4.1.86.Final (0 known vulnerabilities) 31 (0 known vulnerabilities)
P2
P0-42889		 Apache Commons Text 1.8 Apache License 2.0 ❌   CVE-2022-42889 CRITICAL: CVSS 9.8 1.10.0 (0 known vulnerabilities) 1.10.0 (0 known vulnerabilities)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@raanand-hw