Skip to content

add distributed locking to jobs in alerting (#1542)

Mend for GitHub.com / WhiteSource Security Check failed May 2, 2024 in 2m 39s

Security Report

1 new vulnerabilities were introduced in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2021-28170

Path to dependency file: /build.gradle

Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.glassfish/javax.el/3.0.0/dd532526e7c8de48e40419e6af1183658a973379/javax.el-3.0.0.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.glassfish/javax.el/3.0.0/dd532526e7c8de48e40419e6af1183658a973379/javax.el-3.0.0.jar

Dependency Hierarchy:

-> alerting-core-2.11.1.0-SNAPSHOT (Root Library)

   -> cron-utils-9.1.6.jar

     -> ❌ javax.el-3.0.0.jar (Vulnerable Library)

Medium 5.3 javax.el-3.0.0.jar Upgrade to version: org.glassfish:jakarta.el:3.0.4, com.sun.el:el-ri:3.0.4 None

Base branch total remaining vulnerabilities: 0
Base branch commit: 65acca128211b60338088f24ea7bd3d1cc8ee964


Total libraries scanned: 168

Scan token: 727baccf9f1c4b3abc2b817235525f67

View more details on Mend for GitHub.com