Vulnerability Check - Githubissues

eclipse-tractusx / bpdm-certificate-management

reference implementation for business partner certificates

Apache License 2.0

1 stars 2 forks source link

Vulnerability Check #84

Closed SujitMBRDI closed 5 months ago

SujitMBRDI commented 5 months ago

Issue Description

Problem: Scans of our repository have revealed vulnerabilities that are below the acceptable threshold. All scans must achieve at least a "Medium" rating to ensure adequate security and compliance standards.

Product Information

Repository Link: vas-country-risk-backend

Tasks

[x] Analyze the CodeQL, Dependabot, Trivy ,Veracode , Kicks scan results to identify all vulnerabilities rated at "Medium" or higher.
[x] Prioritize the vulnerabilities based on their severity and the complexity of the fix.

Hints for Resolution

Focus on fixing the vulnerabilities with the highest severity first.
Ensure that all fixes do not introduce new vulnerabilities or break existing functionality.