🔖(deps): Update github/codeql-action digest to 883d858 (#853) #3159
renovate[bot]publish-action-artifact.yml
on: push
build-and-push-action
42s
Annotations
4 warnings and 1 notice
|
Deprecated API usage:
maven_plugin/src/main/java/io/github/chains_project/maven_lockfile/JsonUtils.java#L46
'setLenient()' is deprecated
|
|
|
|
Vulnerable declared dependency:
github_action/pom.xml#L49
Provides transitive vulnerable dependency maven:io.quarkus:quarkus-core:3.6.8
* [CVE-2024-2700](https://devhub.checkmarx.com/cve-details/CVE-2024-2700?utm_source=jetbrains&utm_medium=referral) 7.0 Exposure of Sensitive Information Through Environmental Variables vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
|
Vulnerable declared dependency:
github_action/pom.xml#L49
Provides transitive vulnerable dependency maven:io.vertx:vertx-core:4.4.6
* [CVE-2024-1023](https://devhub.checkmarx.com/cve-details/CVE-2024-1023?utm_source=jetbrains&utm_medium=referral) 7.5 Exposure of Sensitive Information to an Unauthorized Actor vulnerability with High severity found
* [CVE-2024-1300](https://devhub.checkmarx.com/cve-details/CVE-2024-1300?utm_source=jetbrains&utm_medium=referral) 5.4 Uncontrolled Resource Consumption vulnerability with Medium severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
|
Vulnerable declared dependency:
github_action/pom.xml#L49
Provides transitive vulnerable dependency maven:io.netty:netty-codec-http:4.1.106.Final
* [CVE-2024-29025](https://devhub.checkmarx.com/cve-details/CVE-2024-29025?utm_source=jetbrains&utm_medium=referral) 5.3 Allocation of Resources Without Limits or Throttling vulnerability with Medium severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|