Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Change dataprepper version 2.10.2 #5249

Merged
merged 1 commit into from
Dec 9, 2024

changing version to 2.10.2

dbd7b36
Select commit
Loading
Failed to load commit list.
Merged

Change dataprepper version 2.10.2 #5249

changing version to 2.10.2
dbd7b36
Select commit
Loading
Failed to load commit list.
Mend for GitHub.com / Mend Security Check failed Dec 9, 2024 in 8m 0s

Security Report

2 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2024-49767

Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt

Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt

Dependency Hierarchy:

-> ❌ werkzeug-3.0.3-py3-none-any.whl (Vulnerable Library)

High 7.5 werkzeug-3.0.3-py3-none-any.whl Upgrade to version: quart - 0.19.7;werkzeug - 3.0.6 #5122
CVE-2024-49766

Path to dependency file: /examples/trace-analytics-sample-app/sample-app/requirements.txt

Path to vulnerable library: /examples/trace-analytics-sample-app/sample-app/requirements.txt

Dependency Hierarchy:

-> ❌ werkzeug-3.0.3-py3-none-any.whl (Vulnerable Library)

Low 3.7 werkzeug-3.0.3-py3-none-any.whl Upgrade to version: Werkzeug - 3.0.6 #5122

Base branch total remaining vulnerabilities: 0
Base branch commit: ba044edcb04939ab20ec348478bad1bc74fb6660


Total libraries scanned: 109

Scan token: 1ee974bd68dc4a7ab7e06f01ccc462fc

View more details on Mend for GitHub.com