Squashed commit of the following: commit 1eaefe55af28e8f5c3e64ec255e3c039a8076269 Merge: ed43676 e5da956 Author: Niklas <[email protected]> Date: Wed Sep 28 10:43:27 2022 +0200 Merge pull request #262 from DependencyTrack/dependabot/github_actions/actions/setup-node-3.5.0 commit ed436769b8f8bf4a92240daafbf0e1ac92a6343d Merge: f3b6a0c d33ce07 Author: Niklas <[email protected]> Date: Wed Sep 28 10:39:06 2022 +0200 Merge pull request #261 from DependencyTrack/dependabot/docker/docker/nginxinc/nginx-unprivileged-de9ed41 commit f3b6a0cb1f05585d328b40a9b37751edcffe0f3c Merge: df995f5 2196f55 Author: Niklas <[email protected]> Date: Wed Sep 28 10:38:07 2022 +0200 Merge pull request #259 from awegg/1948_cvss_on_components commit e5da95650a086586ff9da8dd21d5ee1d2a368a53 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed Sep 28 01:37:44 2022 +0000 build(deps): bump actions/setup-node from 3.4.1 to 3.5.0 Bumps [actions/setup-node](https://github.com/actions/setup-node) from 3.4.1 to 3.5.0. - [Release notes](https://github.com/actions/setup-node/releases) - [Commits](https://github.com/actions/setup-node/compare/v3.4.1...v3.5.0) --- updated-dependencies: - dependency-name: actions/setup-node dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> commit d33ce07c6090e697c4c53f7e19374ab9573a9590 Author: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue Sep 27 01:39:41 2022 +0000 build(deps): bump nginxinc/nginx-unprivileged in /docker Bumps nginxinc/nginx-unprivileged from `e916f63` to `de9ed41`. --- updated-dependencies: - dependency-name: nginxinc/nginx-unprivileged dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> commit 2196f55a86675d5297070acef361496cb73b0b54 Author: awegg <[email protected]> Date: Sun Sep 25 13:26:22 2022 +0200 Add CVSS, EPSS to Component Vulnerabilities Make more information available on the component vulnerability tab with default visibility false. Fixes DependencyTrack/dependency-track#1948 Signed-off-by: awegg <[email protected]>