Closed github-actions[bot] closed 6 months ago
Title: Snyk: snowflake-ingest-java org.apache.commons:commons-compress 1.21 Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/decdb8fe-6a6d-465d-9e89-84aa34efb781 Repo: snowflake-ingest-java CVE: CVE-2024-26308 Package Type: java Package Name: org.apache.commons:commons-compress Package Version: 1.21 Snyk ID: SNYK-JAVA-ORGAPACHECOMMONS-6254297 Vulnerability URL: http://security.snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-6254297 Severity: medium Introduced Date: 2024-02-28 Projects with Vulnerability: snowflakedb/snowflake-ingest-java:pom.xml Target File: pom.xml JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-1180091
Resolved with https://github.com/snowflakedb/snowflake-ingest-java/pull/693
sfc-gh-xhuang
commented
6 months ago sfc-gh-xhuang
commented
6 months ago
Title: Snyk: snowflake-ingest-java org.apache.commons:commons-compress 1.21 Additional information on Snyk can be found here: https://snyk.io/org/snowflakedb-sca-scanning-public-repo/project/decdb8fe-6a6d-465d-9e89-84aa34efb781 Repo: snowflake-ingest-java CVE: CVE-2024-26308 Package Type: java Package Name: org.apache.commons:commons-compress Package Version: 1.21 Snyk ID: SNYK-JAVA-ORGAPACHECOMMONS-6254297 Vulnerability URL: http://security.snyk.io/vuln/SNYK-JAVA-ORGAPACHECOMMONS-6254297 Severity: medium Introduced Date: 2024-02-28 Projects with Vulnerability: snowflakedb/snowflake-ingest-java:pom.xml Target File: pom.xml JIRA Ticket: https://snowflakecomputing.atlassian.net/browse/SNOW-1180091