Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

snyk fix for vulnerable libraries #1534

Closed
wants to merge 17 commits into from
Closed

snyk fix for vulnerable libraries #1534

wants to merge 17 commits into from

Conversation

rajapandi1234
Copy link
Contributor

The PR has the fix for vulnerable libraries
The PR also addresses few docker image-based issues

snyk-bot and others added 17 commits July 1, 2024 17:25
@snyk-bot
fix: kernel/kernel-qrcodegenerator-zxing/pom.xml to reduce vulnerabil…
1dca2a0 
…ities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMBEUST-174815
@snyk-bot
fix: kernel/kernel-salt-generator/Dockerfile_DO_NOT_BUILD to reduce v…
7bd6cf0 
…ulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-2936229
- https://snyk.io/vuln/SNYK-DEBIAN11-GIT-3232722
@snyk-bot
fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities
9ee0311 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-1015415
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
@snyk-bot
fix: kernel/kernel-authcodeflowproxy-api/pom.xml to reduce vulnerabil…
bfb758f 
…ities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHETOMCATEMBED-6435950
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-541187
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-6247635
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-467268
- https://snyk.io/vuln/SNYK-JAVA-ORGHIBERNATEVALIDATOR-568163
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
@snyk-bot
fix: kernel/kernel-pdfgenerator-itext/pom.xml to reduce vulnerabilities
705d741 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2320389
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-1052448
- https://snyk.io/vuln/SNYK-JAVA-ORGBOUNCYCASTLE-2841508
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-541282
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-541284
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391484
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391485
- https://snyk.io/vuln/SNYK-JAVA-COMITEXTPDF-2391486
@snyk-bot
fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities
815b89f 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5488379
- https://snyk.io/vuln/SNYK-JAVA-ORGJSON-5962464
@snyk-bot
fix: kernel/kernel-idobjectvalidator/pom.xml to reduce vulnerabilities
27f8958 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-1015415
- https://snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-5710356
@snyk-bot
fix: kernel/kernel-bom/pom.xml to reduce vulnerabilities
0ca936d 
The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORKSECURITY-6457293
- https://snyk.io/vuln/SNYK-JAVA-COMMONSIO-1277109
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-6444790
- https://snyk.io/vuln/SNYK-JAVA-IONETTY-6483812
- https://snyk.io/vuln/SNYK-JAVA-ORGSPRINGFRAMEWORK-6597980
- https://snyk.io/vuln/SNYK-JAVA-ORGAPACHEHTTPCOMPONENTS-1048058
@rajapandi1234
Merge pull request #1 from rajapandi1234/snyk-fix-838dc321b54d9ed1013…
693142b 
…e8cd325ad1f36

[Snyk] Security upgrade com.google.zxing:javase from 3.3.3 to 3.4.1
@rajapandi1234
Merge pull request #9 from rajapandi1234/snyk-fix-9b7a899666374b65ac5…
c68fa2b 
…67fb556d0c164

[Snyk] Fix for 6 vulnerabilities
@rajapandi1234
Merge pull request #8 from rajapandi1234/snyk-fix-62ea626c16a3d6f8ad5…
43efdc1 
…b58896b00f4f9

[Snyk] Security upgrade com.github.java-json-tools:json-schema-validator from 2.2.10 to 2.2.14
@rajapandi1234
Merge pull request #7 from rajapandi1234/snyk-fix-4b10f7d6a03136df687…
b18e1ab 
…4238603b41637

[Snyk] Security upgrade org.json:json from 20180813 to 20231013
@rajapandi1234
Merge pull request #6 from rajapandi1234/snyk-fix-a759c454c7ccd94f49e…
5137662 
…c2086568401ee

[Snyk] Fix for 8 vulnerabilities
@rajapandi1234
Merge pull request #5 from rajapandi1234/snyk-fix-b8420e70d206d0e1f6a…
6f008d2 
…75e7facda68ac

[Snyk] Fix for 6 vulnerabilities
@rajapandi1234
Merge pull request #4 from rajapandi1234/snyk-fix-019476028eb6776527e…
8d3113c 
…d5807bc24b6c4

[Snyk] Security upgrade com.google.guava:guava from 19.0 to 32.0.0-android
@rajapandi1234
Merge pull request #3 from rajapandi1234/snyk-fix-2bd6eab66ff68df1496…
223977d 
…078a1f2930204

[Snyk] Security upgrade openjdk from 11 to 22
@snyk-bot @rajapandi1234
fix: kernel/kernel-config-server/Dockerfile-no-updates to reduce vuln…
9824259 
…erabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-GLIBC-5927133
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-1585150
- https://snyk.io/vuln/SNYK-DEBIAN11-CURL-3065656

Signed-off-by: rajapandi.m <rajapandi.m@technoforte.co.in>
@rajapandi1234 rajapandi1234 reopened this Jul 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rajapandi1234 @snyk-bot