[BUG]: Manage security alerts reported by dependabot - Githubissues

arol-polito / AROL-CLOUD

MIT License

2 stars 2 forks source link

[BUG]: Manage security alerts reported by dependabot #17

Closed gmacario closed 1 year ago

gmacario commented 1 year ago

Description of the bug

As part of regular code maintenance I would advise @mariodedapolito to review Dependabot vulnerability alerts and act accordingly.

As a target we should ensure that there are no vulns marked "High" and should strive to minimize those with Moderate or Low score.

Steps To Reproduce

Go to https://github.com/arol-polito/AROL-CLOUD/security/dependabot (accessible only to maintainer)
Review the vulnerability report (1 High and 8 Moderate as of today)

Additional Information

No response

mariodedapolito commented 1 year ago

@gmacario on it! Thank you for reporting!