search

ah-ha-admin / refactored-memory

MIT License
1 stars 1 forks source link

Update checkmarx-ts/checkmarx-cxflow-github-action digest to 6aadf58 #443

Closed renovate[bot] closed 1 year ago

renovate[bot] commented 1 year ago

Mend Renovate

This PR contains the following updates:

Package Type Update Change
checkmarx-ts/checkmarx-cxflow-github-action action digest a19b258 -> 6aadf58

⚠ Dependency Lookup Warnings ⚠

Warnings were logged while processing this repo. Please check the Dependency Dashboard for more information.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

vercel[bot] commented 1 year ago

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name Status Preview Comments Updated (UTC)
refactored-memory ❌ Failed (Inspect) Sep 6, 2023 11:13am
refactored-memory-pif7 ❌ Failed (Inspect) Sep 6, 2023 11:13am
commit-lint[bot] commented 1 year ago

Contributors

renovate[bot]

Commit-Lint commands
You can trigger Commit-Lint actions by commenting on this PR: - `@Commit-Lint merge patch` will merge dependabot PR on "patch" versions (X.X.Y - Y change) - `@Commit-Lint merge minor` will merge dependabot PR on "minor" versions (X.Y.Y - Y change) - `@Commit-Lint merge major` will merge dependabot PR on "major" versions (Y.Y.Y - Y change) - `@Commit-Lint merge disable` will desactivate merge dependabot PR - `@Commit-Lint review` will approve dependabot PR - `@Commit-Lint stop review` will stop approve dependabot PR
squash-labs[bot] commented 1 year ago

Manage this branch in Squash

Test this branch here: https://renovatecheckmarx-ts-checkmarx-ky14e.squash.io
guardrails[bot] commented 1 year ago

:warning: We detected 18 security issues in this pull request:

Mode: paranoid | Total findings: 18 | Considered vulnerability: 18

Hard-Coded Secrets (16)
Severity | Details | Docs :-: | :-- | :-: Medium | Title: **Hex High Entropy String**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/##SomeNotes#L533 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#HexHighEntropyString) Medium | Title: **Hex High Entropy String**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/AndroidManifest.xml#L6 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#HexHighEntropyString) Medium | Title: **StackHawk API Key**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/stackhawk.yml#L1 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#stackhawk-api-key) Medium | Title: **StackHawk API Key**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/stackhawk.yml#L93 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#stackhawk-api-key) Medium | Title: **Github Key**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/checkmarx.yml#L41 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-key) Medium | Title: **Github Key**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/soos-dast-scan.yml#L37 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-key) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/Sexflixxxvip00/nuget.config#L10 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/action.yml#L16 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/nuget.config#L10 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/action.yml#L490 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/action.yml#L509 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/nuget.config#L10 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/stackhawk.yml#L82 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/static.yml#L9 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **New GitHub Token Format**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/nuget.config#L10 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#github-token-new) Medium | Title: **Netlify API Key**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/jekyll-pages.yml#L44 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr#netlify-api-key) More info on how to fix Hard-Coded Secrets in [General](https://docs.guardrails.io/docs/en/vulnerabilities/general/hard-coded_secrets.html?utm_source=ghpr). ---
Insecure Use of Dangerous Function (2)
Severity | Details | Docs :-: | :-- | :-: High | Title: **Non-static OS command execution**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/.github/workflows/setup.rb#L16 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/ruby/insecure_use_of_dangerous_function.html?utm_source=ghpr#dangerous-exec) High | Title: **Non-static OS command execution**
https://github.com/ah-ha-admin/refactored-memory/blob/15040080c583102a3e7cf6bae2c43004bd07cefe/setup.rb#L16 | [:books:](https://docs.guardrails.io/docs/en/vulnerabilities/ruby/insecure_use_of_dangerous_function.html?utm_source=ghpr#dangerous-exec) More info on how to fix Insecure Use of Dangerous Function in [Ruby](https://docs.guardrails.io/docs/en/vulnerabilities/ruby/insecure_use_of_dangerous_function.html?utm_source=ghpr).

👉 Go to the dashboard for detailed results.

📥 Happy? Share your feedback with us.

stale[bot] commented 1 year ago

Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward?

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs.

repo-ranger[bot] commented 1 year ago

⚠️ This has been marked to be closed in 7 days.

renovate[bot] commented 1 year ago

Renovate Ignore Notification

Because you closed this PR without merging, Renovate will ignore this update. You will not get PRs for the checkmarx-ts/checkmarx-cxflow-github-action 6aadf58 update again.

If you accidentally closed this PR, or if you changed your mind: rename this PR to get a fresh replacement PR.