chore(deps): update dependency puma to v6.4.3 #168
Security Report
You have successfully remediated 2 vulnerabilities, but introduced 2 new vulnerabilities in this branch.
❌ New vulnerabilities:
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2024-47764Path to dependency file: /src/frontend/package.json Path to vulnerable library: /src/frontend/package.json Dependency Hierarchy: -> cookies-next-2.1.2.tgz (Root Library) -> ❌ cookie-0.4.2.tgz (Vulnerable Library) |
Medium | 5.3 | cookie-0.4.2.tgz | Upgrade to version: cookie - 0.7.0 | None |
CVE-2024-37891Path to dependency file: /src/loadgenerator/requirements.txt Path to vulnerable library: /src/loadgenerator/requirements.txt Dependency Hierarchy: -> ❌ urllib3-2.0.7-py3-none-any.whl (Vulnerable Library) |
Medium | 4.4 | urllib3-2.0.7-py3-none-any.whl | Upgrade to version: urllib3 - 1.26.19,2.2.2 | None |
✔️ Remediated vulnerabilities:
CVE | Vulnerable Library |
---|---|
CVE-2024-45614 | puma-6.4.0.gem |
CVE-2024-21647 | puma-6.4.0.gem |
Base branch total remaining vulnerabilities: 29
Base branch commit: 651312c9c82b789d7867420ec64c43adf2e24321
Total libraries scanned: 981
Scan token: 6c7e76324144444aad02e3f6328b73bd