Bump common-compress package to fix CVE (#2186)
Mend for GitHub.com / Mend Security Check
failed
Mar 8, 2024 in 5m 25s
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2023-4218Path to dependency file: /plugin/build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.eclipse.platform/org.eclipse.core.runtime/3.26.100/83c77ee0cfc948ea33f5054dda3f5c39250a7ed5/org.eclipse.core.runtime-3.26.100.jar Dependency Hierarchy: -> ❌ org.eclipse.core.runtime-3.26.100.jar (Vulnerable Library) |
 Medium |
5.0 | org.eclipse.core.runtime-3.26.100.jar | Upgrade to version: org.eclipse.core.runtime:3.29.0 | #1863 |
Total libraries scanned: 249
Scan token: ae486ebdc887485fa5ee19c401f67c33
Loading