-
Hello! We ran a twistlock scan and it showed the following CVE's:
libtiff5-
- [CVE-2022-1210](https://security-tracker.debian.org/tracker/CVE-2022-1210)
- [CVE-2022-1622](https://security-track…
-
I need help with security vulnerabilities . We ran scan with Aqua Sec SaaS offering on the latest Image on Docker : https://hub.docker.com/r/jboss/kie-server-showcase/tags?page=1&ordering=last_updated…
-
- Laravel Mix Version: 6.0.19 (`npm list --depth=0`)
- Node Version (`node -v`): v12.16.2
- NPM Version (`npm -v`): 7.13.0
- OS: Windows 10 (OS Build 19041.985)
### Description:
Depende…
-
**Do you want to request a *feature* or report a *bug*?**
bug
**What is the current behavior?**
The version of the `ws` package used by metro (v1.1.5) has been flagged as having a security vu…
-
Vulnerable Library - spring-boot-starter-security-2.7.1.jar
Path to dependency file: /pom.xml
Path to vulnerable library: /home/wss-scanner/.m2/repository/org/springframework/security/spring-securi…
-
Just noticed [Dependabot's security alert](https://github.com/AloisSeckar/WBSC-Scoring/security/dependabot/15) in my project regarding SSRF vulnerability of `ip 1.1.8`. The dependency is being importe…
-
Support an output format for SARIF to leverage the Security tab on repos and let GitHub ingest the data. https://docs.github.com/en/code-security/code-scanning/integrating-with-code-scanning/sarif-sup…
-
### 🚀 The feature
Remove phototour.py to eliminate dependency on datasets hosted using HTTP instead of HTTPS.
https://github.com/pytorch/vision/blob/70a8e05a98ea8e32b98e5a09d22ab81dd3062234/torchv…
-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0x26d1f0c46950585d0f44fa6f68fe5b97384ef99916bd9dfd68ab60461e5c2495
**Severity:** high
**Description:**
**Description*…
-
The dependency on System.Security.Cryptography.Pkcs version 6.0.1 has the following CVE-2023-29331:
https://github.com/advisories/GHSA-555c-2p6r-68mm
Please bump the version to at least 7.0.2 as…