search

zonkyio / embedded-database-spring-test

A library for creating isolated embedded databases for Spring-powered integration tests.
Apache License 2.0
399 stars 37 forks source link

Dependency indicates security risks in IDEA #202

Closed qq253498229 closed 2 years ago

qq253498229 commented 2 years ago
image
qq253498229 commented 2 years ago

Provides transitive vulnerable dependency org.apache.commons:commons-compress:1.20 CVE-2021-35515 7.5 Excessive Iteration vulnerability with medium severity found CVE-2021-35516 7.5 Improper Handling of Length Parameter Inconsistency vulnerability with medium severity found CVE-2021-35517 7.5 Improper Handling of Length Parameter Inconsistency vulnerability with medium severity found CVE-2021-36090 7.5 Improper Handling of Length Parameter Inconsistency vulnerability with medium severity found Results powered by Checkmarx(c)