Skip to content

add version number to newly created datasource object

Mend for GitHub.com / WhiteSource Security Check failed Mar 18, 2024 in 17m 52s

Security Report

You have successfully remediated 2 vulnerabilities, but introduced 1 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-28849

Path to dependency file: /package.json

Path to vulnerable library: /node_modules/follow-redirects/package.json

Dependency Hierarchy:

-> chromedriver-121.0.2.tgz (Root Library)

   -> axios-1.6.7.tgz

     -> ❌ follow-redirects-1.15.4.tgz (Vulnerable Library)

Medium 6.5 follow-redirects-1.15.4.tgz Upgrade to version: follow-redirects - 1.15.6 None

✔️ Remediated vulnerabilities:

CVE Vulnerable Library
CVE-2019-20149 juice-shop-juice-shop-15.2.0_node16_win32_x64
WS-2017-3772 juice-shop-juice-shop-14.5.1_node16_darwin_x64

Base branch total remaining vulnerabilities: 16
Base branch commit: 05abf5e8839e4db6c9afe0ac9483df57564e888a


Total libraries scanned: 2592

Scan token: a0021443ed024a70ae90cf5753356481

View more details on Mend for GitHub.com