Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[WIP] Add cache columns to operating_systems table #322

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Add cache columns to operating_systems table

1081ffe
Select commit
Loading
Failed to load commit list.
Open

[WIP] Add cache columns to operating_systems table #322

Add cache columns to operating_systems table
1081ffe
Select commit
Loading
Failed to load commit list.
This check has been archived and is scheduled for deletion. Learn more about checks retention
Mend Bolt for GitHub / WhiteSource Security Check failed Oct 23, 2023 in 6m 48s

Security Report

16 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2020-8165

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/activesupport-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ activesupport-5.1.7.gem (Vulnerable Library)

Critical 9.8 activesupport-5.1.7.gem Upgrade to version: 5.2.4.3,6.0.3.1 None
WS-2023-0224

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: actionpack - 6.1.5 None
CVE-2023-22796

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/activesupport-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ activesupport-5.1.7.gem (Vulnerable Library)

High 7.5 activesupport-5.1.7.gem Upgrade to version: activesupport - 6.1.7.1,7.0.4.1 None
CVE-2023-22795

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: actionpack - 6.1.7.1, 7.0.4.1 None
CVE-2023-22792

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: actionpack - 6.1.7.1,7.0.4.1 None
CVE-2021-22904

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: actionpack - 5.2.4.6,5.2.6,6.0.3.7,6.1.3.2 None
CVE-2021-22885

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: actionpack - 5.2.4.6,5.2.6,6.0.3.7,6.1.3.2 None
CVE-2020-8164

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

High 7.5 actionpack-5.1.7.gem Upgrade to version: 5.2.4.3,6.0.3.1 None
CVE-2023-28362

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

Medium 6.1 actionpack-5.1.7.gem Upgrade to version: actionpack - 6.1.7.3,7.0.5.1 None
CVE-2022-27777

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionview-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> railties-5.1.7.gem

     -> actionpack-5.1.7.gem

       -> ❌ actionview-5.1.7.gem (Vulnerable Library)

Medium 6.1 actionview-5.1.7.gem Upgrade to version: actionview - 5.2.7.1,6.0.4.8,6.1.5.1,7.0.2.4 None
CVE-2020-15169

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionview-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> railties-5.1.7.gem

     -> actionpack-5.1.7.gem

       -> ❌ actionview-5.1.7.gem (Vulnerable Library)

Medium 6.1 actionview-5.1.7.gem Upgrade to version: 6.0.3.3, 5.2.4.4 None
CVE-2022-23634

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

Medium 5.9 actionpack-5.1.7.gem Upgrade to version: puma - 4.3.11, 5.6.2; actionpack - 5.2.6.2, 6.0.4.6, 6.1.4.6, 7.0.2.2 None
CVE-2022-23633

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

Medium 5.9 actionpack-5.1.7.gem Upgrade to version: 5.2.6.2, 6.0.4.6, 6.1.4.6, 7.0.2.2 None
CVE-2022-3704

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

Medium 5.4 actionpack-5.1.7.gem None
CVE-2020-5267

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionview-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> railties-5.1.7.gem

     -> actionpack-5.1.7.gem

       -> ❌ actionview-5.1.7.gem (Vulnerable Library)

Medium 4.8 actionview-5.1.7.gem Upgrade to version: actionview:6.0.2.2, 5.2.4.2 None
CVE-2020-8166

Path to dependency file: /Gemfile.lock

Path to vulnerable library: /home/wss-scanner/.gem/ruby/3.2.0/cache/actionpack-5.1.7.gem

Dependency Hierarchy:

-> rspec-rails-4.1.2.gem (Root Library)

   -> ❌ actionpack-5.1.7.gem (Vulnerable Library)

Medium 4.3 actionpack-5.1.7.gem Upgrade to version: 5.2.4.3,6.0.3.1 None

Base branch total remaining vulnerabilities: 0
Base branch commit: 9a60db52d8d49581abc91fa8c716b0a1eb2375a8


Total libraries scanned: 43

Scan token: 703416a7d9ef4d3abf9518c15f653682

View more details on Mend Bolt for GitHub