search

aayant-mend / npm-maven-sample

0 stars 0 forks source link

Update dependency com.thoughtworks.xstream:xstream to v1.4.18 (main) - autoclosed #19

Closed mend-for-github-com[bot] closed 1 year ago

mend-for-github-com[bot] commented 1 year ago

This PR contains the following updates:

Package Type Update Change
com.thoughtworks.xstream:xstream (source) compile patch 1.4.5 -> 1.4.18

This PR resolves the vulnerabilities described in Issue #13

Version 1.4.5 | Risk Change | Critical | High | Medium | Low | | --- | --- | --- | --- | --- | | N/A | 8 | 25 | 2 | 0 |
Version 1.4.18 | Risk Change | Critical | High | Medium | Low | | --- | --- | --- | --- | --- | | -98% | 0 (-8 ) | 2 (-23 ) | 0 (-2 ) | 0 (--) |
Version 1.4.20.redhat-00001 | Risk Change | Critical | High | Medium | Low | | --- | --- | --- | --- | --- | | -90% | 1 (-7 ) | 0 (-25 ) | 0 (-2 ) | 0 (--) |

Mend ensures you have the greatest risk reduction ("Recommended Fix"-highlighted in green) by removing as many vulnerabilities as possible. Click to see how we calculate risk reduction.