[Snyk] Upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0 #5

An automation triggered a pipeline warning

Found 1 vulnerabilities. An additional 0 vulnerabilities have been marked as unaffected.

Output from Automations

4 rules were checked:

If a new dependency is added where the license risk is at least medium
then notify all users in the group admins by email

✔️ The rule did not trigger. Manage rule

If a dependency contains a vulnerability which has not been marked as unaffected and which has not triggered this rule for this dependency before
then notify all users in the group admins by email

✔️ The rule did not trigger. Manage rule

If there is a dependency where the license risk is at least high
then send a pipeline warning

✔️ The rule did not trigger. Manage rule

If a dependency contains a vulnerability which has not been marked as unaffected
then send a pipeline warning

⚠️ The rule triggered for the following vulnerabilities, causing a pipeline warning. Manage rule

Vulnerability	CVSS2	CVSS3	Dependency	Dependency Licenses
CVE-2020-14343	10	9.8	pyyaml (pip)	MIT

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0 #5

[Snyk] Upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0 #5

An automation triggered a pipeline warning

Output from Automations

4 rules were checked:

Re-running checks...

[Snyk] Upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0 #5

Are you sure you want to change the base?

fix: upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0

[Snyk] Upgrade org.apache.commons:commons-lang3 from 3.2.1 to 3.13.0 #5

An automation triggered a pipeline warning

Output from Automations

4 rules were checked:

Re-running checks...