Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix(web): linted-imports-with-new-rule #1540

Merged
merged 2 commits into from
Mar 18, 2024

Merge branch 'dev' into fix(web)-linted-imports-with-new-rules

8979b77
Select commit
Loading
Failed to load commit list.
Merged

fix(web): linted-imports-with-new-rule #1540

Merge branch 'dev' into fix(web)-linted-imports-with-new-rules
8979b77
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / Mend Security Check failed Mar 18, 2024 in 13m 50s

Security Report

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-28849

Path to dependency file: /package.json

Path to vulnerable library: /.yarn/cache/follow-redirects-npm-1.15.2-1ec1dd82be-8be0d39919.zip

Dependency Hierarchy:

-> @kleros/kleros-v2-web-0.2.0.tgz (Root Library)

   -> react-scripts-5.0.1.tgz

     -> webpack-dev-server-4.15.1.tgz

       -> http-proxy-middleware-2.0.6.tgz

         -> http-proxy-1.18.1.tgz

           -> ❌ follow-redirects-1.15.2.tgz (Vulnerable Library)

Medium 6.5 follow-redirects-1.15.2.tgz Upgrade to version: follow-redirects - 1.15.6 #1185

Base branch total remaining vulnerabilities: 12
Base branch commit: 94754ab7617bb527e55a4d6c5ce42c1110652a2f


Total libraries scanned: 2203

Scan token: 493baad51b0c4edebb3a0a45929c89d7

View more details on Mend Bolt for GitHub