🐛 QD-12099 Use MkdirTemp instead MkdirAll #67
avafanasievAnnotations
1 error, 9 warnings, and 5 notices
|
Hardcoded passwords:
.github/workflows/mirror.yml#L30
Hardcoded password detected by "Password in URL" default rule
|
|
Unused parameter:
core/startup/prepare.go#L195
Unused parameter `prod product.Product`
|
|
Vulnerable declared dependency:
clang/go.mod#L110
Dependency go:golang.org/x/oauth2:v0.23.0 is vulnerable , safe version v0.27.0
* [CVE-2025-22868](https://www.mend.io/vulnerability-database/CVE-2025-22868?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
core/go.mod#L91
Dependency go:golang.org/x/oauth2:v0.18.0 is vulnerable , safe version v0.27.0
* [CVE-2025-22868](https://www.mend.io/vulnerability-database/CVE-2025-22868?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
cmd/go.mod#L112
Dependency go:golang.org/x/oauth2:v0.23.0 is vulnerable , safe version v0.27.0
* [CVE-2025-22868](https://www.mend.io/vulnerability-database/CVE-2025-22868?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
core/go.mod#L89
Dependency go:golang.org/x/crypto:v0.31.0 is vulnerable , safe version v0.35.0
* [CVE-2025-22869](https://www.mend.io/vulnerability-database/CVE-2025-22869?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
cli/go.mod#L112
Dependency go:golang.org/x/oauth2:v0.23.0 is vulnerable , safe version v0.27.0
* [CVE-2025-22868](https://www.mend.io/vulnerability-database/CVE-2025-22868?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
platform/go.mod#L61
Dependency go:golang.org/x/oauth2:v0.18.0 is vulnerable , safe version v0.27.0
* [CVE-2025-22868](https://www.mend.io/vulnerability-database/CVE-2025-22868?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
cli/go.mod#L109
Dependency go:golang.org/x/crypto:v0.31.0 is vulnerable , safe version v0.35.0
* [CVE-2025-22869](https://www.mend.io/vulnerability-database/CVE-2025-22869?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
platform/go.mod#L60
Dependency go:golang.org/x/crypto:v0.31.0 is vulnerable , safe version v0.35.0
* [CVE-2025-22869](https://www.mend.io/vulnerability-database/CVE-2025-22869?utm_source=JetBrains) 7.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Usage of Snake_Case:
platform/commoncontext/analyzer_cli_options_test.go#L79
Use camel case instead of snake case
|
|
Vulnerable declared dependency:
core/go.mod#L8
Dependency go:github.com/docker/docker:v25.0.6+incompatible is vulnerable , safe version v27.1.1+incompatible
* [CVE-2024-36620](https://www.mend.io/vulnerability-database/CVE-2024-36620?utm_source=JetBrains) 6.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
cmd/go.mod#L12
Dependency go:github.com/docker/docker:v25.0.6+incompatible is vulnerable , safe version v27.1.1+incompatible
* [CVE-2024-36620](https://www.mend.io/vulnerability-database/CVE-2024-36620?utm_source=JetBrains) 6.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
clang/go.mod#L43
Dependency go:github.com/docker/docker:v25.0.6+incompatible is vulnerable , safe version v27.1.1+incompatible
* [CVE-2024-36620](https://www.mend.io/vulnerability-database/CVE-2024-36620?utm_source=JetBrains) 6.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
|
Vulnerable declared dependency:
cli/go.mod#L9
Dependency go:github.com/docker/docker:v25.0.6+incompatible is vulnerable , safe version v27.1.1+incompatible
* [CVE-2024-36620](https://www.mend.io/vulnerability-database/CVE-2024-36620?utm_source=JetBrains) 6.5 Insufficient Information
Results powered by [Mend.io](https://www.mend.io/jetbrains-lp/?utm_source=JetBrains)
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
JetBrains~qodana-cli~E8O31A.dockerbuild
Expired
|
124 KB |
sha256:31dab2f9061e7a1d1c50c252ba09228a0fb760f4b960515aae150c543739565a
|
|