Skip to content

Bump splunk-library-javalogging from 1.8.0 to 1.11.1 in /src/backend/efiling-api #153

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump splunk-library-javalogging from 1.8.0 to 1.11.1 in /src/backend/efiling-api #153

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 14, 2021

Bumps splunk-library-javalogging from 1.8.0 to 1.11.1.

Release notes

Sourced from splunk-library-javalogging's releases.

Version 1.11.1

Version 1.11.1

Minor Changes

Version 1.11.0

Minor Changes

  • Added a parameter to set await termination timeout. PR

Version 1.10.0

Bug Fixes

  • Fixed issue causing delayed time when using AsyncAppender (GitHub issue #186)
    • Now the timestamp is being recorded at the time when log event "occurs" instead of the time when log event is being "sent"

Minor Changes

  • Updated the project to use make conventions to spin up local dockerized instances.
  • Upgrade version of okhttp to 4.9.1.
  • Upgrade version of slf4j to 1.7.30.
  • Upgrade version of gson to 2.8.7.
  • Upgrade version of junit to 4.13.2.
  • Upgrade version of commons to 3.12.

Version 1.9.0

  • Resolve an issue with TcpAppender losing events when busy (@​avdv)
  • Fix an issue with middleware not delegating on completion (@​Blackbaud-MikeLueders)
  • Add EventHeaderSerializer that allows specifying HEC metadata (@​snorwin)
  • Allow specification of timeout parameters
  • Allow time to be specified by EventBodySerializer (@​avpavlov)
  • Use an Okhttp client per appender rather than a global client (@​snorwin)
  • Fix an issue with empty strings in configs (@​thomasmey)
  • Resolve an issue with sending raw events to HEC (@​tburch)
  • Allow templated metadata values to be applied to an appender (@​brunoalexandresantos)
Changelog

Sourced from splunk-library-javalogging's changelog.

Version 1.11.1

Minor Changes

Version 1.11.0

Minor Changes

  • Added a parameter to set await termination timeout. PR

Version 1.10.0

Bug Fixes

  • Fixed issue causing delayed time when using AsyncAppender (GitHub issue #186)
    • Now the timestamp is being recorded at the time when log event "occurs" instead of the time when log event is being "sent"

Minor Changes

  • Updated the project to use make conventions to spin up local dockerized instances.
  • Upgrade version of okhttp to 4.9.1.
  • Upgrade version of slf4j to 1.7.30.
  • Upgrade version of gson to 2.8.7.
  • Upgrade version of junit to 4.13.2.
  • Upgrade version of commons to 3.12.

Version 1.9.0

  • Resolve an issue with TcpAppender losing events when busy (@​avdv)
  • Fix an issue with middleware not delegating on completion (@​Blackbaud-MikeLueders)
  • Add EventHeaderSerializer that allows specifying HEC metadata (@​snorwin)
  • Allow specification of timeout parameters
  • Allow time to be specified by EventBodySerializer (@​avpavlov)
  • Use an Okhttp client per appender rather than a global client (@​snorwin)
  • Fix an issue with empty strings in configs (@​thomasmey)
  • Resolve an issue with sending raw events to HEC (@​tburch)
  • Allow templated metadata values to be applied to an appender (@​brunoalexandresantos)
Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump splunk-library-javalogging in /src/backend/efiling-api
19a4cb8 
Bumps [splunk-library-javalogging](https://github.com/splunk/splunk-library-javalogging) from 1.8.0 to 1.11.1.
- [Release notes](https://github.com/splunk/splunk-library-javalogging/releases)
- [Changelog](https://github.com/splunk/splunk-library-javalogging/blob/main/CHANGELOG.md)
- [Commits](splunk/splunk-library-javalogging@1.8.0...1.11.1)

---
updated-dependencies:
- dependency-name: com.splunk.logging:splunk-library-javalogging
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file java Pull requests that update Java code labels Dec 14, 2021
mergebase-codegreen[bot]
mergebase-codegreen bot approved these changes Dec 14, 2021
View reviewed changes
Copy link

@mergebase-codegreen mergebase-codegreen bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Mergebase Code Green

Updated Vulnerability Report

The report below shows the state of the repository after the pull request.

Critical

Vulnerability Dependency Source Path
CVE-2017-5929 ch.qos.logback/logback-access:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2017-5929 ch.qos.logback/logback-classic:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2017-5929 ch.qos.logback/logback-core:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2021-26707 npm:merge-deep:3.0.2 src/frontend/efiling-demo/yarn.lock
CVE-2021-26707 npm:merge-deep:3.0.2 src/frontend/efiling-frontend/yarn.lock
CVE-2020-15256 npm:object-path:0.11.4 src/frontend/efiling-demo/yarn.lock
CVE-2020-15256 npm:object-path:0.11.4 src/frontend/efiling-frontend/yarn.lock
NSWG-ECO-433 npm:open:7.3.0 src/frontend/efiling-demo/yarn.lock
NSWG-ECO-433 npm:open:7.3.0 src/frontend/efiling-frontend/yarn.lock
CVE-2016-6809 org.apache.tika/tika-core:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter-actuator:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter-actuator:UNKNOWN.VERSION src/backend/efiling-reviewer-api/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter-security:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter:UNKNOWN.VERSION src/backend/efiling-reviewer-api/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter:UNKNOWN.VERSION src/backend/libs/efiling-demo-starter/pom.xml
CVE-2021-26987 org.springframework.boot/spring-boot-starter:UNKNOWN.VERSION src/backend/libs/efiling-diligen-client-starter/pom.xml

Extra High

Vulnerability Dependency Source Path
CVE-2020-8265 npm:@types/node:14.11.5 src/frontend/efiling-demo/yarn.lock
CVE-2020-8265 npm:@types/node:14.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2018-8039 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-client/pom.xml
CVE-2018-8039 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-starter/pom.xml

High

Vulnerability Dependency Source Path
CVE-2021-22884, CVE-2021-22883, CVE-2020-8277 npm:@types/node:14.11.5 src/frontend/efiling-demo/yarn.lock
CVE-2021-22884, CVE-2021-22883, CVE-2020-8277 npm:@types/node:14.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28469 npm:glob-parent:2.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28469 npm:glob-parent:2.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28469 npm:glob-parent:3.1.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28469 npm:glob-parent:3.1.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28469 npm:glob-parent:5.1.1 src/frontend/efiling-demo/yarn.lock
CVE-2020-28469 npm:glob-parent:5.1.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-7788 npm:ini:1.3.5 src/frontend/efiling-demo/yarn.lock
CVE-2020-7788 npm:ini:1.3.5 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28488 npm:jquery:3.5.1 src/frontend/efiling-demo/yarn.lock
CVE-2020-28488 npm:jquery:3.5.1 src/frontend/efiling-frontend/yarn.lock
CVE-2019-20149 npm:kind-of:2.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2019-20149 npm:kind-of:2.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2019-20149 npm:kind-of:3.2.2 src/frontend/efiling-demo/yarn.lock
CVE-2019-20149 npm:kind-of:3.2.2 src/frontend/efiling-frontend/yarn.lock
CVE-2019-20149 npm:kind-of:4.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2019-20149 npm:kind-of:4.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2019-20149 npm:kind-of:5.1.0 src/frontend/efiling-demo/yarn.lock
CVE-2019-20149 npm:kind-of:5.1.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash._reinterpolate:3.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash._reinterpolate:3.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.escape:4.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.escape:4.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.flattendeep:4.4.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.flattendeep:4.4.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.includes:4.3.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.includes:4.3.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isboolean:3.0.3 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isboolean:3.0.3 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isequal:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isequal:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isinteger:4.0.4 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isinteger:4.0.4 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isnumber:3.0.3 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isnumber:3.0.3 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isplainobject:4.0.6 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isplainobject:4.0.6 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.isstring:4.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.isstring:4.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.memoize:4.1.2 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.memoize:4.1.2 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.once:4.1.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.once:4.1.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.sortby:4.7.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.sortby:4.7.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.template:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.template:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.templatesettings:4.2.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.templatesettings:4.2.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash.uniq:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash.uniq:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23337 npm:lodash:4.17.20 src/frontend/efiling-demo/yarn.lock
CVE-2021-23337 npm:lodash:4.17.20 src/frontend/efiling-frontend/yarn.lock
CVE-2021-33502 npm:normalize-url:1.9.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-33502 npm:normalize-url:1.9.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-33502 npm:normalize-url:3.3.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-33502 npm:normalize-url:3.3.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23341, CVE-2020-15138 npm:prismjs:1.17.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-23341, CVE-2020-15138 npm:prismjs:1.17.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23341 npm:prismjs:1.21.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23341 npm:prismjs:1.22.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23341 npm:prismjs:1.22.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-27290 npm:ssri:6.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-27290 npm:ssri:6.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-27290 npm:ssri:8.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-27290 npm:ssri:8.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-7774 npm:y18n:4.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-7774 npm:y18n:4.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-30468, CVE-2021-22696 org.apache.cxf/cxf-rt-transports-http:3.4.1 src/backend/libs/efiling-bom/pom.xml
CVE-2021-30468, CVE-2021-22696, CVE-2017-3156, CVE-2016-8739 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-client/pom.xml
CVE-2021-30468, CVE-2021-22696, CVE-2017-3156, CVE-2016-8739 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-starter/pom.xml
CVE-2016-4434 org.apache.tika/tika-core:UNKNOWN.VERSION src/backend/efiling-api/pom.xml

Medium

Vulnerability Dependency Source Path
CVE-2020-8287 npm:@types/node:14.11.5 src/frontend/efiling-demo/yarn.lock
CVE-2020-8287 npm:@types/node:14.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2018-6341 npm:@types/prop-types:15.7.3 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:@types/prop-types:15.7.3 src/frontend/efiling-frontend/yarn.lock
CVE-2020-7608 npm:@types/yargs-parser:15.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-7608 npm:@types/yargs-parser:15.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23364 npm:browserslist:4.10.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-23364 npm:browserslist:4.10.0 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23364 npm:browserslist:4.14.5 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23364 npm:browserslist:4.15.0 src/frontend/efiling-demo/yarn.lock
CVE-2021-29060 npm:color-string:1.5.3 src/frontend/efiling-demo/yarn.lock
CVE-2021-29060 npm:color-string:1.5.4 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23382 npm:colorette:1.2.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-23382 npm:colorette:1.2.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28498 npm:elliptic:6.5.3 src/frontend/efiling-demo/yarn.lock
CVE-2020-28498 npm:elliptic:6.5.3 src/frontend/efiling-frontend/yarn.lock
CVE-2018-6341 npm:eslint-plugin-react-hooks:1.7.0 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:eslint-plugin-react-hooks:1.7.0 src/frontend/efiling-frontend/yarn.lock
CVE-2018-6341 npm:eslint-plugin-react-hooks:4.1.2 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:eslint-plugin-react-hooks:4.2.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-26237 npm:highlight.js:9.15.10 src/frontend/efiling-demo/yarn.lock
CVE-2020-26237 npm:highlight.js:9.15.10 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23362 npm:hosted-git-info:2.8.8 src/frontend/efiling-demo/yarn.lock
CVE-2021-23362 npm:hosted-git-info:2.8.8 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash._reinterpolate:3.0.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash._reinterpolate:3.0.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.escape:4.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.escape:4.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.flattendeep:4.4.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.flattendeep:4.4.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.includes:4.3.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.includes:4.3.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isboolean:3.0.3 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isboolean:3.0.3 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isequal:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isequal:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isinteger:4.0.4 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isinteger:4.0.4 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isnumber:3.0.3 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isnumber:3.0.3 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isplainobject:4.0.6 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isplainobject:4.0.6 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.isstring:4.0.1 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.isstring:4.0.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.memoize:4.1.2 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.memoize:4.1.2 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.once:4.1.1 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.once:4.1.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.sortby:4.7.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.sortby:4.7.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.template:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.template:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.templatesettings:4.2.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.templatesettings:4.2.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash.uniq:4.5.0 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash.uniq:4.5.0 src/frontend/efiling-frontend/yarn.lock
CVE-2020-28500 npm:lodash:4.17.20 src/frontend/efiling-demo/yarn.lock
CVE-2020-28500 npm:lodash:4.17.20 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23382, CVE-2021-23368 npm:postcss:7.0.21 src/frontend/efiling-demo/yarn.lock
CVE-2021-23382, CVE-2021-23368 npm:postcss:7.0.21 src/frontend/efiling-frontend/yarn.lock
CVE-2021-23382, CVE-2021-23368 npm:postcss:7.0.35 src/frontend/efiling-demo/yarn.lock
CVE-2021-23382, CVE-2021-23368 npm:postcss:7.0.35 src/frontend/efiling-frontend/yarn.lock
CVE-2018-6341 npm:prop-types:15.7.2 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:prop-types:15.7.2 src/frontend/efiling-frontend/yarn.lock
CVE-2018-6341 npm:react-refresh:0.8.3 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:scheduler:0.19.1 src/frontend/efiling-demo/yarn.lock
CVE-2018-6341 npm:scheduler:0.19.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-27515 npm:url-parse:1.4.7 src/frontend/efiling-demo/yarn.lock
CVE-2021-27515 npm:url-parse:1.4.7 src/frontend/efiling-frontend/yarn.lock
CVE-2021-32640 npm:ws:6.2.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-32640 npm:ws:6.2.1 src/frontend/efiling-frontend/yarn.lock
CVE-2021-32640 npm:ws:7.3.1 src/frontend/efiling-demo/yarn.lock
CVE-2021-32640 npm:ws:7.3.1 src/frontend/efiling-frontend/yarn.lock
CVE-2020-1954, CVE-2020-13954, CVE-2019-12406, CVE-2016-6812, CVE-2015-5253, CVE-2012-5786, CVE-2012-3451 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-client/pom.xml
CVE-2020-1954, CVE-2020-13954, CVE-2019-12406, CVE-2016-6812, CVE-2015-5253, CVE-2012-5786, CVE-2012-3451 org.apache.cxf/cxf-rt-transports-http:UNKNOWN.VERSION src/backend/libs/efiling-cso-starter/pom.xml
CVE-2021-28657 org.apache.tika/tika-core:1.24.1 src/backend/libs/efiling-bom/pom.xml
CVE-2021-28657, CVE-2015-3271 org.apache.tika/tika-core:UNKNOWN.VERSION src/backend/efiling-api/pom.xml

Low

Vulnerability Dependency Source Path
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/efiling-api/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/efiling-reviewer-api/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-bambora-api-client/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-ceis-api-client/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-commons/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-cso-client/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-cso-starter/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-demo-starter/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-diligen-client-starter/pom.xml
CVE-2020-10650 com.fasterxml.jackson.core/jackson-databind:UNKNOWN.VERSION src/backend/libs/efiling-diligen-client/pom.xml
CVE-2013-7035 npm:@types/prop-types:15.7.3 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:@types/prop-types:15.7.3 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:@types/react-test-renderer:16.9.3 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:@types/react-test-renderer:16.9.3 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:@types/react:16.9.51 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:@types/react:16.9.53 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:eslint-plugin-react-hooks:1.7.0 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:eslint-plugin-react-hooks:1.7.0 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:eslint-plugin-react-hooks:4.1.2 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:eslint-plugin-react-hooks:4.2.0 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:prop-types:15.7.2 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:prop-types:15.7.2 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:react-dom:16.13.1 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:react-dom:16.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:react-is:16.13.1 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:react-is:16.13.1 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:react-refresh:0.8.3 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:react-test-renderer:16.13.1 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:react-test-renderer:16.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:react:16.13.1 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:react:16.14.0 src/frontend/efiling-frontend/yarn.lock
CVE-2013-7035 npm:scheduler:0.19.1 src/frontend/efiling-demo/yarn.lock
CVE-2013-7035 npm:scheduler:0.19.1 src/frontend/efiling-frontend/yarn.lock

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mergebase-codegreen mergebase-codegreen[bot] mergebase-codegreen[bot] approved these changes

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file java Pull requests that update Java code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants