chore(deps): update cartservice to v1.8.1 #154
Closed
Mend for GitHub.com / Mend Security Check
failed
Jul 13, 2024 in 15m 37s
Security Report
You have successfully remediated 2 vulnerabilities, but introduced 1 new vulnerabilities in this branch.
❌ New vulnerabilities:
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2024-37891Path to dependency file: /src/loadgenerator/requirements.txt Path to vulnerable library: /src/loadgenerator/requirements.txt Dependency Hierarchy: -> ❌ urllib3-2.0.7-py3-none-any.whl (Vulnerable Library) |
Medium | 4.4 | urllib3-2.0.7-py3-none-any.whl | Upgrade to version: urllib3 - 1.26.19,2.2.2 | None |
✔️ Remediated vulnerabilities:
CVE | Vulnerable Library |
---|---|
CVE-2024-32028 | opentelemetry.instrumentation.http.1.5.1-beta.1.nupkg |
CVE-2024-32028 | opentelemetry.instrumentation.aspnetcore.1.5.1-beta.1.nupkg |
Base branch total remaining vulnerabilities: 24
Base branch commit: 651312c9c82b789d7867420ec64c43adf2e24321
Total libraries scanned: 981
Scan token: a243580026954bb281072f2b56d17b07
Loading