[AUTO] Increment version to 2.20.0-SNAPSHOT #992
Security Report
❌ New vulnerabilities:
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-12798Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.3.14/436bd0d56730df756cff6d12d0f97df6f275e4a/logback-core-1.3.14.jar Dependency Hierarchy: -> ktlint-0.47.1.jar (Root Library) -> logback-classic-1.3.14.jar -> ❌ logback-core-1.3.14.jar (Vulnerable Library) |
 Medium |
6.6 | logback-core-1.3.14.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13, ch.qos.logback:logback-classic:1.5.13 | #847 |
CVE-2024-12798Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-classic/1.3.14/a2f0045eae641a356b74afb0d3b85268181a93cf/logback-classic-1.3.14.jar Dependency Hierarchy: -> ktlint-0.47.1.jar (Root Library) -> ❌ logback-classic-1.3.14.jar (Vulnerable Library) |
Medium |
6.6 | logback-classic-1.3.14.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13, ch.qos.logback:logback-classic:1.5.13 | #847 |
CVE-2024-12801Path to dependency file: /build.gradle Path to vulnerable library: /tmp/containerbase/cache/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.3.14/436bd0d56730df756cff6d12d0f97df6f275e4a/logback-core-1.3.14.jar Dependency Hierarchy: -> ktlint-0.47.1.jar (Root Library) -> logback-classic-1.3.14.jar -> ❌ logback-core-1.3.14.jar (Vulnerable Library) |
Medium |
4.4 | logback-core-1.3.14.jar | Upgrade to version: ch.qos.logback:logback-core:1.5.13 | #847 |
Base branch total remaining vulnerabilities: 2
Base branch commit: 5af90befaf94b740e8c43c2c672700af2ec3571e
Total libraries scanned: 222
Scan token: d928829a7d89488292bcbcc15a7bf446