Skip to content
Image

Merge pull request #231 from pascaliske/dependabot/npm_and_yarn/webpa… #459

Sign in to view logs

Merge pull request #231 from pascaliske/dependabot/npm_and_yarn/webpa…

Merge pull request #231 from pascaliske/dependabot/npm_and_yarn/webpa… #459

Triggered via push March 22, 2024 10:12
@pascaliskepascaliske
pushed 6eb5eaa
master
Status Success
Total duration 3m 44s
Artifacts

image.yml

on: push
Build
3m 34s
Build
Scan
19s
Scan
Fit to window
Zoom out
Zoom in

Annotations

3 errors and 3 warnings
Scan
CVE-2023-52425 - HIGH severity - expat: parsing large tokens can trigger a denial of service vulnerability in libexpat
Scan
CVE-2024-28757 - HIGH severity - expat: XML Entity Expansion vulnerability in libexpat
Scan
CVE-2024-25062 - HIGH severity - libxml2: use-after-free in XMLReader vulnerability in libxml2
Scan
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
Scan
CVE-2023-52426 - MEDIUM severity - expat: recursive XML entity expansion vulnerability vulnerability in libexpat
Build
The `set-output` command is deprecated and will be disabled soon. Please upgrade to using Environment Files. For more information see: https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/