-
[CVE-2022-1471](https://nvd.nist.gov/vuln/detail/CVE-2022-1471) has been reported against SnakeYaml 1.30+.
Is Swagger impacted by this vulnerability?
Thank you
-
A vulnerabilty that was discovered and reported in 8.0 still exists in the new release 9.0.
You should have received an invite for a report on [huntr.dev](https://huntr.dev) to your mailbox: info@o…
-
After running the OWASP Dependency check against our components, reporting vulnerabilties :
```
[ERROR] hk2-utils-2.6.1.jar: CVE-2021-4277
hk2-utils-2.6.1.jar - Included in dropwizard-core
[IN…
-
### Bug Description
Security vulnerabilty in dev dependencies
See advisory for libsqlite3-sys [here](https://github.com/advisories/GHSA-jw36-hf63-69r9)
### Minimal Reproduction
This is a secur…
-
Hi,
Is this library still under development? Cos the last update is 2021, so not sure what is the future plan for this.
In addition, one of its dependency Jackson-databind has 3 vulnerabilitie…
-
Hello,
I am experiencing issues with most of my Ubuntu machines I am monitoring with Wazuh. A lot of vulnerabilities are showing up in Wazuh reports, and most of them are related to the same packag…
-
Fix the following vulnérability: prototype pollution vulnerability via .parse()
[Vulnérability](https://nvd.nist.gov/vuln/detail/CVE-2022-26260)
-
Hi!
I have an idea that would make trivy scans faster in my pipelines.
## Use case
I'm not sure if this is a common use case, so I appreciate feedback from other users here.
Currently when…
-
-
Please ensure your issue adheres to the following guidelines:
This repository is used for technical issues only. For general Support like questions, please create a new Thread in our [Community Fo…