-
## Vulnerabilities found for centraldashboard:1.9.0
```
For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your prβ¦
-
## Vulnerabilities found for kfam:1.9.0
```
For OSS Maintainers: VEX Notice
--------------------------------
If you're an OSS maintainer and Trivy has detected vulnerabilities in your project that yβ¦
-
**Issue Description:**
Hi,@Smith-Cruise, during the setup of the StarRocks project, it was found that the version of _PyMySQL_ specified in the _starrocks/contrib/starrocks-python-client/setup.py_ fiβ¦
-
**`Severity Threshold: π΅ MEDIUM`**
# 28 Potential vulnerability sources found within this repo
| `π΄ CRITICAL` | `π‘ HIGH` | `π΅ MEDIUM` | `βͺ LOW` |
|-|-|-|-|
| 0 | 12 | 16 | 0 |
**`ID: 01J9W0R9W5DW7β¦
-
```
ghcr.io/wmo-im/wis2box-api:latest (ubuntu 22.04)
================================================
Total: 16 (HIGH: 16, CRITICAL: 0)
ββββββββββββββββββ¬βββββββββββββββββ¬βββββββββββ¬βββββββββ¬ββββ¦
-
### What happened?
as currently all qbittorrent versions from 3.2.1 to 5.0.0 are affected by a critical RCE vulnerability i wanted to ask if it would be possible to add newer versions to the repo oβ¦
-
## Description
Prism.Avalonia (including prerelease) has a versioned dependency chain starting with `System.Configuration.ConfigurationManager` 4.7.0 which ends in package `System.Drawing.Common` 4.7β¦
-
### π₯ Β Actual behavior
NVD feed [403s](https://github.com/fleetdm/vulnerabilities/actions/runs/11058966035/job/30726204825) once every day or two when building the vulnerabilities repo.
### π―οΈ More β¦
-
A simple Vulnerability details view can take over 3min to be returned, for example https://public.vulnerablecode.io/api/vulnerabilities/516832
This needs to be optimized to make the API usable.
β¦
-
The details have been sent to jc21's email.