Update qodana.yml #82
Annotations
1 error, 7 warnings, and 2 notices
Vulnerable declared dependency:
package.json#L127
Dependency npm:ip:1.1.5 is vulnerable , safe version 2.0.1
* [CVE-2023-42282](https://devhub.checkmarx.com/cve-details/CVE-2023-42282?utm_source=jetbrains&utm_medium=referral) 9.8 Server-Side Request Forgery (SSRF) vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
Vulnerable declared dependency:
package.json#L150
Dependency npm:terser:5.10.0 is vulnerable , safe version 5.14.2
* [CVE-2022-25858](https://devhub.checkmarx.com/cve-details/CVE-2022-25858?utm_source=jetbrains&utm_medium=referral) 7.5 Inefficient Regular Expression Complexity vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
Vulnerable declared dependency:
package.json#L108
Dependency npm:@babel/core:7.17.0 is vulnerable , safe version 7.18.6
* [Cxc7705965-e0f0](https://devhub.checkmarx.com/cve-details/Cxc7705965-e0f0?utm_source=jetbrains&utm_medium=referral) 7.5 Missing Release of Memory after Effective Lifetime vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
qodana
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/setup-node@v2. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
|
qodana
The following actions use a deprecated Node.js version and will be forced to run on node20: actions/checkout@v3, actions/setup-node@v2. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
qodana
You are using a non-compatible Qodana linter jetbrains/qodana-jvm:2024.1 with the current CLI (2024.2.2)
|
qodana
You are using a non-compatible Qodana linter jetbrains/qodana-jvm:2024.1 with the current CLI (2024.2.2)
|
qodana
You are using a non-compatible Qodana linter jetbrains/qodana-jvm:2024.1 with the current CLI (2024.2.2)
|
Vulnerable declared dependency:
package.json#L141
Dependency npm:postcss:8.4.6 is vulnerable , safe version 8.4.31
* [CVE-2023-44270](https://devhub.checkmarx.com/cve-details/CVE-2023-44270?utm_source=jetbrains&utm_medium=referral) 5.3 Improper Neutralization of Special Elements in Output Used by a Downstream Component ("Injection") vulnerability with Medium severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
Vulnerable declared dependency:
package.json#L129
Dependency npm:karma:6.3.15 is vulnerable , safe version 6.3.16
* [CVE-2021-23495](https://devhub.checkmarx.com/cve-details/CVE-2021-23495?utm_source=jetbrains&utm_medium=referral) 6.1 URL Redirection to Untrusted Site ("Open Redirect") vulnerability with Medium severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
qodana-report
|
3.05 MB |
|