module_modeling_llm: Persist Structured Grading Instructions (#373)
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-8309Dependency Hierarchy: -> ❌ langchain_community-0.2.15-py3-none-any.whl (Vulnerable Library) |
 Critical |
9.8 | langchain_community-0.2.15-py3-none-any.whl | Upgrade to version: langchain-community - 0.3.0 | #374 |
CVE-2024-56201Path to dependency file: /modules/programming/module_programming_themisml/.ws-temp-HJTOAE-requirements.txt Path to vulnerable library: /home/wss-scanner/.cache/pypoetry/virtualenvs/module-programming-themisml-6JtHFAOJ-py3.11/lib/python3.11/site-packages/jinja2-3.1.4.dist-info Dependency Hierarchy: -> ❌ jinja2-3.1.4-py3-none-any.whl (Vulnerable Library) |
 High |
8.8 | jinja2-3.1.4-py3-none-any.whl | Upgrade to version: jinja2 - 3.1.5 | #384 |
CVE-2024-11394Path to dependency file: /modules/programming/module_programming_themisml/.ws-temp-HJTOAE-requirements.txt Path to vulnerable library: /home/wss-scanner/.cache/pypoetry/virtualenvs/module-programming-themisml-6JtHFAOJ-py3.11/lib/python3.11/site-packages/transformers-4.46.3.dist-info Dependency Hierarchy: -> ❌ transformers-4.46.3-py3-none-any.whl (Vulnerable Library) |
High |
8.8 | transformers-4.46.3-py3-none-any.whl | Upgrade to version: transformers - 4.48.0 | #368 |
CVE-2024-11393Path to dependency file: /modules/programming/module_programming_themisml/.ws-temp-HJTOAE-requirements.txt Path to vulnerable library: /home/wss-scanner/.cache/pypoetry/virtualenvs/module-programming-themisml-6JtHFAOJ-py3.11/lib/python3.11/site-packages/transformers-4.46.3.dist-info Dependency Hierarchy: -> ❌ transformers-4.46.3-py3-none-any.whl (Vulnerable Library) |
High |
8.8 | transformers-4.46.3-py3-none-any.whl | Upgrade to version: transformers - 4.48.0 | #368 |
CVE-2024-11392Path to dependency file: /modules/programming/module_programming_themisml/.ws-temp-HJTOAE-requirements.txt Path to vulnerable library: /home/wss-scanner/.cache/pypoetry/virtualenvs/module-programming-themisml-6JtHFAOJ-py3.11/lib/python3.11/site-packages/transformers-4.46.3.dist-info Dependency Hierarchy: -> ❌ transformers-4.46.3-py3-none-any.whl (Vulnerable Library) |
High |
8.8 | transformers-4.46.3-py3-none-any.whl | Upgrade to version: transformers - 4.48.0 | #368 |
CVE-2023-5072Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/org.json/json/20220924/5aa95e7688f76c664af205c5937620f02688dfbc/json-20220924.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> ❌ json-20220924.jar (Vulnerable Library) |
High |
7.5 | json-20220924.jar | Upgrade to version: org.json:json:20231013 | #358 |
CVE-2022-45688Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/org.json/json/20220924/5aa95e7688f76c664af205c5937620f02688dfbc/json-20220924.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> ❌ json-20220924.jar (Vulnerable Library) |
High |
7.5 | json-20220924.jar | Upgrade to version: org.json:json:20230227 | #358 |
CVE-2023-6378Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-classic/1.4.5/28e7dc0b208d6c3f15beefd73976e064b4ecfa9b/logback-classic-1.4.5.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> ❌ logback-classic-1.4.5.jar (Vulnerable Library) |
High |
7.1 | logback-classic-1.4.5.jar | Upgrade to version: ch.qos.logback:logback-classic:1.3.12,1.4.12 | #358 |
CVE-2024-56326Path to dependency file: /modules/programming/module_programming_themisml/.ws-temp-HJTOAE-requirements.txt Path to vulnerable library: /home/wss-scanner/.cache/pypoetry/virtualenvs/module-programming-themisml-6JtHFAOJ-py3.11/lib/python3.11/site-packages/jinja2-3.1.4.dist-info Dependency Hierarchy: -> ❌ jinja2-3.1.4-py3-none-any.whl (Vulnerable Library) |
 Medium |
6.7 | jinja2-3.1.4-py3-none-any.whl | Upgrade to version: jinja2 - 3.1.5 | #384 |
CVE-2024-12798Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-classic/1.4.5/28e7dc0b208d6c3f15beefd73976e064b4ecfa9b/logback-classic-1.4.5.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> ❌ logback-classic-1.4.5.jar (Vulnerable Library) |
Medium |
6.6 | logback-classic-1.4.5.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13, ch.qos.logback:logback-classic:1.5.13 | #358 |
CVE-2024-12798Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.4.5/e9bb2ea70f84401314da4300343b0a246c8954da/logback-core-1.4.5.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> logback-classic-1.4.5.jar -> ❌ logback-core-1.4.5.jar (Vulnerable Library) |
Medium |
6.6 | logback-core-1.4.5.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13, ch.qos.logback:logback-classic:1.5.13 | #358 |
CVE-2024-12801Path to dependency file: /playground/data/example/exercise-1/tests/build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.4.5/e9bb2ea70f84401314da4300343b0a246c8954da/logback-core-1.4.5.jar Dependency Hierarchy: -> artemis-java-test-sandbox-1.11.3.jar (Root Library) -> logback-classic-1.4.5.jar -> ❌ logback-core-1.4.5.jar (Vulnerable Library) |
Medium |
4.4 | logback-core-1.4.5.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13 | #358 |
Total libraries scanned: 607
Scan token: d5d61b31f65e41b7a2b0a9f9eba6729f