search

department-of-veterans-affairs / abd-vro

To get Veterans benefits in minutes, VRO software uses health evidence data to help fast track disability claims.
Other
19 stars 6 forks source link

Update the tomcat.embed dependency for snyk remediation #3169

Closed nelsestu closed 2 months ago

nelsestu commented 2 months ago

Resolve SecRel Errors

What was the problem?

SecRel failure occurred when Snyk Detected a High severity - Insufficient Session Expiration vulnerability in org.apache.tomcat.embed:tomcat-embed-core

Associated tickets or Slack threads:

How does this fix it?[^1]

Snyk and Aqua errors have been remediated.

How to test this PR

[^1]: Pull-Requests guidelines. If PR is significant, update Current Software State wiki page. [^secrel]: To check if a PR will succeed in the SecRel workflow, test PRs in the SecRel pipeline.

github-actions[bot] commented 2 months ago

Test Results

116 tests  ±0   116 :white_check_mark: ±0   37s :stopwatch: ±0s  34 suites ±0     0 :zzz: ±0   34 files   ±0     0 :x: ±0 

Results for commit b97722d5. ± Comparison against base commit b6c61426.

:recycle: This comment has been updated with latest results.

github-actions[bot] commented 2 months ago

JaCoCo Test Coverage

Overall Project 67.56% :x:

There is no coverage information present for the Files changed