search

jhannes / logevents

An easy-to-extend implementation of SLF4J with batteries included and sensible defaults
Other
42 stars 8 forks source link

[Snyk] Security upgrade org.eclipse.jetty:jetty-webapp from 9.4.18.v20190429 to 9.4.33.v20201020 #37

Closed snyk-bot closed 3 years ago

snyk-bot commented 3 years ago

Snyk has created this PR to fix one or more vulnerable packages in the `maven` dependencies of this project.

Changes included in this PR

Vulnerabilities that will be fixed

With an upgrade:
Severity Priority Score (*) Issue Upgrade Breaking Change Exploit Maturity
high severity 676/1000
Why? Recently disclosed, Has a fix available, CVSS 7.8		 Privilege Escalation
SNYK-JAVA-ORGECLIPSEJETTY-1021614		 org.eclipse.jetty:jetty-webapp:
9.4.18.v20190429 -> 9.4.33.v20201020
No No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

coveralls commented 3 years ago

Coverage Status

Coverage increased (+0.08%) to 91.192% when pulling 091fa93b5f622a4e6213b489db7b710b2c1f7ac2 on snyk-fix-850bca71710a4dbd2cdbff52a690ebda into b96feb047b75f54b353b3ba2c75f0d578ee5eef3 on master.

codecov-io commented 3 years ago

Codecov Report

Merging #37 into master will increase coverage by 0.01%. The diff coverage is n/a.

Impacted file tree graph

@@             Coverage Diff              @@
##             master      #37      +/-   ##
============================================
+ Coverage     87.47%   87.49%   +0.01%     
  Complexity     1850     1850              
============================================
  Files           117      117              
  Lines          5214     5214              
  Branches        497      497              
============================================
+ Hits           4561     4562       +1     
  Misses          458      458              
+ Partials        195      194       -1
Impacted Files Coverage Δ Complexity Δ
...in/java/org/logeventsdemo/servlets/DemoServer.java 78.43% <0.00%> (-3.93%) 10.00% <0.00%> (-1.00%)
...ogevents/src/main/java/org/logevents/LogEvent.java 82.53% <0.00%> (+0.79%) 56.00% <0.00%> (+1.00%)
.../logevents/observers/DatabaseLogEventObserver.java 95.52% <0.00%> (+0.81%) 53.00% <0.00%> (ø%)

Continue to review full report at Codecov.

Legend - Click here to learn more Δ = absolute <relative> (impact), ø = not affected, ? = missing data Powered by Codecov. Last update b96feb0...091fa93. Read the comment docs.