From 4d8cbbe0ba84707403c8715f72a5ba12c90887ef Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 15 Feb 2024 17:36:55 +0000
Subject: [PATCH 1/6] feat(critical): add critical severity to KICS github
 action

---
 images/Critical.png | Bin 0 -> 1279 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 images/Critical.png

diff --git a/images/Critical.png b/images/Critical.png
new file mode 100644
index 0000000000000000000000000000000000000000..170c1f7b614bad3c9e2f4a193cf57a5c19aa9e48
GIT binary patch
literal 1279
zcmV<b1OWSqP)<h;3K|Lk000e1NJLTq001!n001!v1^@s6bDTjO00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj9sYygZRA@u(nO$gHMHI)+OgA4k1X8LLqCyg+iN?yU
zwo;4W7Gq;YC8E#|1e+J*7n%n}{6O0WsX?Ww`k+s?KGZ(hq9RSLxI(q|!*n&SrbTEF
zToo;?reaKX?>J}fxwzTg`PjX8C6)YOvggbuoB7Y2IdkqT6GFg+4yV@(nt2g(g_?>;
zwIv&|ky|rrCSqjSimu$kKMrF<o4RX4O+<`b<@NEre;62e*wDs4dOLPvO|dD@Yst;<
z=cPFq^pr51sPnfb)9G{M$3iS3)ZnN2p!}rA7=sq-E{ptk=NQ0_M7=*8mzYQ*4s?4S
z7rf79@WluaQw-P}KKQ%VX3}Zut_o)nYPNIWi9C3W^PA+KB`Y1c4iqGRq@<`L!2J~V
zCC;~ek(@|Psb8?56%oubdj}Y+X=ZUju2#QXt)1kSpv_JkXL$|?aAE$$o-53Y&{2Q!
zVpwupFLXRSpxR~Y?}6s7PI@<fwAtz4)m{<=|Abs8aPXZ^KCT4lI5qS#{P6Z}^4zF8
zJNfctCDRF<>6N>883iCqrO2-5o+d9I^dj=^B6veRT=VKHaM7i$)D!U6k6Fm>dk=p9
zYK(dUFuaz%w2i#z#Ih%@7<_b=0RQi4_;U08@Y&ki;oE1nz_CsD!HI!K=-mKZv8MJm
z@}d!01g=8sU3ZWdF!sb#aQ4`7@&e8r`W$}!c=i@sbo~mlEco15erPxL{w}XAv4Ec@
zSIgoXSHto*UndV>a{MG5xqBmdv%!tu)ZR`Wz*IJ?Le2{F*YtdoRy9>Qv@3DzczS|N
zBgOjwMd+CR?TlKXusI2k$imY&mdN3Rvs=jdlc&gvkH)E%pUEtXQG|@NiXU2deFItX
zfMc+g<VF#UiE%QuV2Bjb+_{vjcwiumtAN<T$@;`q9M=mw^l20KPgsgzTeQ+4J27UR
zNOL&(LcdE1+@QJ1N%De|`;wd2kT;vl@7)9)4@m*knhb(NgztY!rWSKJac-RjJlL{(
z-zP7i`-Lqf2N?>(le&<zM`xcU<;V-zN2V6zGd4a~&&;r&<g>5w7BA7<468qQw<J^j
zd3r*Y9AB$2Dh{1rJ{(bpqJ@c`%;>)diw5IL;FSvANRX=q!wJiZ!mvVcHCp@bED?b9
zROVT{p0Z+H1;n<oA(!`ekZB}5sj<8;@%{GKR6T`Z=)efQ8Zm}b$iePw_sSRNYe)>A
zCF^=sU4>v8Mv=wUtO+@))Ge9O@)@ECHxX4lAVoz!2rYNLRI`Q?LdBO;e8$9ZCAWf3
zB9KI#-!E6qdU{3$%ZvmhhRAioS%k_|T$Hb|V?y1}GT4~R9Ia@woJAl(SP5%#uNL96
zet9nJC)b&ZL?Atx6ED_6h`Q1EZgda172%Yf%5k9E+suK#MQ$W)S28v#UWpL;r|TkZ
zb|J=P2;C4x08;fzgalu4v2F6B9-uBO!51vBH3-e<L>3Y9(UsS&V%*;@KXMgyl?6{?
zpYsQM$BtVoWLIJn5u(H}F(8=O5LUlx<^|i6U%-dr9DGRZB0^LdKg~DDyxCaS06XLU
p#<Y-{iTE$6Iy=oJ{s$re{s95!;+_HZQ$+v(002ovPDHLkV1kbfYDfS8

literal 0
HcmV?d00001


From b0c4da87511d18d55b490f305f31d618920593fd Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 15 Feb 2024 18:00:39 +0000
Subject: [PATCH 2/6] add critical to commenter and new package versions

---
 package.json     | 10 ++++++----
 src/commenter.js |  7 ++++++-
 2 files changed, 12 insertions(+), 5 deletions(-)

diff --git a/package.json b/package.json
index 921fd1d..7b04ac0 100644
--- a/package.json
+++ b/package.json
@@ -19,15 +19,17 @@
   },
   "homepage": "https://github.com/Checkmarx/kics-github-action#readme",
   "dependencies": {
-    "@actions/core": "^1.10.0",
+    "@actions/core": "^1.10.1",
     "@actions/exec": "^1.1.0",
     "@actions/github": "^5.0.0",
     "@actions/io": "^1.1.1",
-    "@actions/tool-cache": "^1.7.1",
-    "moment": "^2.29.4"
+    "@actions/tool-cache": "^2.0.1",
+    "moment": "^2.29.4",
+    "uuid": "^8.3.2"
   },
   "devDependencies": {
     "@vercel/ncc": "^0.36.1",
-    "prettier": "^2.4.1"
+    "prettier": "^2.4.1",
+    "@types/uuid": "^8.3.4"
   }
 }
diff --git a/src/commenter.js b/src/commenter.js
index c313c21..f4f9eea 100644
--- a/src/commenter.js
+++ b/src/commenter.js
@@ -2,8 +2,9 @@ const moment = require('moment')
 const { summary } = require('@actions/core/lib/summary');
 
 const kicsLogo = "https://user-images.githubusercontent.com/111127232/203838108-ad537fea-4573-495a-9619-18500ee81dd9.png"
-const severityOrder = ["HIGH", "MEDIUM", "LOW", "INFO", "TRACE"];
+const severityOrder = ["CRITICAL","HIGH", "MEDIUM", "LOW", "INFO", "TRACE"];
 const severityIcons = {
+    "CRITICAL": "https://raw.githubusercontent.com/Checkmarx/kics-github-action/4d8cbbe0ba84707403c8715f72a5ba12c90887ef/images/Critical.png",
     "HIGH": "https://user-images.githubusercontent.com/23239410/92157087-97285600-ee32-11ea-988f-0aca12c4c126.png",
     "MEDIUM": "https://user-images.githubusercontent.com/23239410/92157093-98598300-ee32-11ea-83d7-af52251a011b.png",
     "LOW": "https://user-images.githubusercontent.com/23239410/92157091-98598300-ee32-11ea-8498-19bd7d62019b.png",
@@ -27,6 +28,10 @@ function createComment(results, withQueries = false, excludedColumnsForCommentsW
         if (severity in severityCounters) {
             message += `| ![${severity}](${severityIcons[severity]}) | ${severity.toUpperCase()} | ${severityCounters[severity.toUpperCase()]} |\n`;
         }
+        else {
+            const imageTag = `<img src="${severityIcons[severity]}" alt="${severity}" width="25">`;
+            message += `| ${imageTag} | ${severity.toUpperCase()} | 0 |\n`;
+        }
     }
     message += `| ![TOTAL](${emptyIcon}) | TOTAL | ${results['total_counter']} |`;
 

From 754cf278899b403ca1ede7964fd1c3f390a4a1f8 Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 15 Feb 2024 18:04:19 +0000
Subject: [PATCH 3/6] changes to package-lock to sync with package json

---
 package-lock.json | 140 +++++++++++++++++++++++++++++++++-------------
 1 file changed, 102 insertions(+), 38 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index f55822c..a6131cf 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -9,22 +9,24 @@
       "version": "1.0.0",
       "license": "GNU GENERAL PUBLIC LICENSE",
       "dependencies": {
-        "@actions/core": "^1.10.0",
+        "@actions/core": "^1.10.1",
         "@actions/exec": "^1.1.0",
         "@actions/github": "^5.0.0",
         "@actions/io": "^1.1.1",
-        "@actions/tool-cache": "^1.7.1",
-        "moment": "^2.29.4"
+        "@actions/tool-cache": "^2.0.1",
+        "moment": "^2.29.4",
+        "uuid": "^8.3.2"
       },
       "devDependencies": {
+        "@types/uuid": "^8.3.4",
         "@vercel/ncc": "^0.36.1",
         "prettier": "^2.4.1"
       }
     },
     "node_modules/@actions/core": {
-      "version": "1.10.0",
-      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.0.tgz",
-      "integrity": "sha512-2aZDDa3zrrZbP5ZYg159sNoLRb61nQ7awl5pSvIq5Qpj81vwDzdMRKzkWJGJuwVvWpvZKx7vspJALyvaaIQyug==",
+      "version": "1.10.1",
+      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.1.tgz",
+      "integrity": "sha512-3lBR9EDAY+iYIpTnTIXmWcNbX3T2kCkAEQGIQx4NVQ0575nk2k3GRZDTPQG+vVtS2izSLmINlxXf0uLtnrTP+g==",
       "dependencies": {
         "@actions/http-client": "^2.0.1",
         "uuid": "^8.3.2"
@@ -38,14 +40,6 @@
         "tunnel": "^0.0.6"
       }
     },
-    "node_modules/@actions/core/node_modules/uuid": {
-      "version": "8.3.2",
-      "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
-      "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==",
-      "bin": {
-        "uuid": "dist/bin/uuid"
-      }
-    },
     "node_modules/@actions/exec": {
       "version": "1.1.0",
       "resolved": "https://registry.npmjs.org/@actions/exec/-/exec-1.1.0.tgz",
@@ -79,18 +73,27 @@
       "integrity": "sha512-Qi4JoKXjmE0O67wAOH6y0n26QXhMKMFo7GD/4IXNVcrtLjUlGjGuVys6pQgwF3ArfGTQu0XpqaNr0YhED2RaRA=="
     },
     "node_modules/@actions/tool-cache": {
-      "version": "1.7.1",
-      "resolved": "https://registry.npmjs.org/@actions/tool-cache/-/tool-cache-1.7.1.tgz",
-      "integrity": "sha512-y1xxxOhXaBUIUit3lhepmu/0xdgiTMpnZRLmVdtF0hTm521doi+MdRRRP62czHvM7wxH6epj4JPNJQ3iJpOrkQ==",
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/@actions/tool-cache/-/tool-cache-2.0.1.tgz",
+      "integrity": "sha512-iPU+mNwrbA8jodY8eyo/0S/QqCKDajiR8OxWTnSk/SnYg0sj8Hp4QcUEVC1YFpHWXtrfbQrE13Jz4k4HXJQKcA==",
       "dependencies": {
         "@actions/core": "^1.2.6",
         "@actions/exec": "^1.0.0",
-        "@actions/http-client": "^1.0.8",
+        "@actions/http-client": "^2.0.1",
         "@actions/io": "^1.1.1",
         "semver": "^6.1.0",
         "uuid": "^3.3.2"
       }
     },
+    "node_modules/@actions/tool-cache/node_modules/@actions/http-client": {
+      "version": "2.2.0",
+      "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.2.0.tgz",
+      "integrity": "sha512-q+epW0trjVUUHboliPb4UF9g2msf+w61b32tAkFEwL/IwP0DQWgbCMM0Hbe3e3WXSKz5VcUXbzJQgy8Hkra/Lg==",
+      "dependencies": {
+        "tunnel": "^0.0.6",
+        "undici": "^5.25.4"
+      }
+    },
     "node_modules/@actions/tool-cache/node_modules/semver": {
       "version": "6.3.0",
       "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.0.tgz",
@@ -99,6 +102,23 @@
         "semver": "bin/semver.js"
       }
     },
+    "node_modules/@actions/tool-cache/node_modules/uuid": {
+      "version": "3.4.0",
+      "resolved": "https://registry.npmjs.org/uuid/-/uuid-3.4.0.tgz",
+      "integrity": "sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A==",
+      "deprecated": "Please upgrade  to version 7 or higher.  Older versions may use Math.random() in certain circumstances, which is known to be problematic.  See https://v8.dev/blog/math-random for details.",
+      "bin": {
+        "uuid": "bin/uuid"
+      }
+    },
+    "node_modules/@fastify/busboy": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/@fastify/busboy/-/busboy-2.1.0.tgz",
+      "integrity": "sha512-+KpH+QxZU7O4675t3mnkQKcZZg56u+K/Ct2K+N2AZYNVK8kyeo/bI18tI8aPm3tvNNRyTWfj6s5tnGNlcbQRsA==",
+      "engines": {
+        "node": ">=14"
+      }
+    },
     "node_modules/@octokit/auth-token": {
       "version": "2.5.0",
       "resolved": "https://registry.npmjs.org/@octokit/auth-token/-/auth-token-2.5.0.tgz",
@@ -200,6 +220,12 @@
         "@octokit/openapi-types": "^11.2.0"
       }
     },
+    "node_modules/@types/uuid": {
+      "version": "8.3.4",
+      "resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-8.3.4.tgz",
+      "integrity": "sha512-c/I8ZRb51j+pYGAu5CrFMRxqZ2ke4y2grEBO5AUjgSkSk+qT2Ea+OdWElz/OiMf5MNpn2b17kuVBwZLQJXzihw==",
+      "dev": true
+    },
     "node_modules/@vercel/ncc": {
       "version": "0.36.1",
       "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.36.1.tgz",
@@ -287,18 +313,28 @@
         "node": ">=0.6.11 <=0.7.0 || >=0.7.3"
       }
     },
+    "node_modules/undici": {
+      "version": "5.28.3",
+      "resolved": "https://registry.npmjs.org/undici/-/undici-5.28.3.tgz",
+      "integrity": "sha512-3ItfzbrhDlINjaP0duwnNsKpDQk3acHI3gVJ1z4fmwMK31k5G9OVIAMLSIaP6w4FaGkaAkN6zaQO9LUvZ1t7VA==",
+      "dependencies": {
+        "@fastify/busboy": "^2.0.0"
+      },
+      "engines": {
+        "node": ">=14.0"
+      }
+    },
     "node_modules/universal-user-agent": {
       "version": "6.0.0",
       "resolved": "https://registry.npmjs.org/universal-user-agent/-/universal-user-agent-6.0.0.tgz",
       "integrity": "sha512-isyNax3wXoKaulPDZWHQqbmIx1k2tb9fb3GGDBRxCscfYV2Ch7WxPArBsFEG8s/safwXTT7H4QGhaIkTp9447w=="
     },
     "node_modules/uuid": {
-      "version": "3.4.0",
-      "resolved": "https://registry.npmjs.org/uuid/-/uuid-3.4.0.tgz",
-      "integrity": "sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A==",
-      "deprecated": "Please upgrade  to version 7 or higher.  Older versions may use Math.random() in certain circumstances, which is known to be problematic.  See https://v8.dev/blog/math-random for details.",
+      "version": "8.3.2",
+      "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
+      "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg==",
       "bin": {
-        "uuid": "bin/uuid"
+        "uuid": "dist/bin/uuid"
       }
     },
     "node_modules/webidl-conversions": {
@@ -323,9 +359,9 @@
   },
   "dependencies": {
     "@actions/core": {
-      "version": "1.10.0",
-      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.0.tgz",
-      "integrity": "sha512-2aZDDa3zrrZbP5ZYg159sNoLRb61nQ7awl5pSvIq5Qpj81vwDzdMRKzkWJGJuwVvWpvZKx7vspJALyvaaIQyug==",
+      "version": "1.10.1",
+      "resolved": "https://registry.npmjs.org/@actions/core/-/core-1.10.1.tgz",
+      "integrity": "sha512-3lBR9EDAY+iYIpTnTIXmWcNbX3T2kCkAEQGIQx4NVQ0575nk2k3GRZDTPQG+vVtS2izSLmINlxXf0uLtnrTP+g==",
       "requires": {
         "@actions/http-client": "^2.0.1",
         "uuid": "^8.3.2"
@@ -338,11 +374,6 @@
           "requires": {
             "tunnel": "^0.0.6"
           }
-        },
-        "uuid": {
-          "version": "8.3.2",
-          "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
-          "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg=="
         }
       }
     },
@@ -379,25 +410,44 @@
       "integrity": "sha512-Qi4JoKXjmE0O67wAOH6y0n26QXhMKMFo7GD/4IXNVcrtLjUlGjGuVys6pQgwF3ArfGTQu0XpqaNr0YhED2RaRA=="
     },
     "@actions/tool-cache": {
-      "version": "1.7.1",
-      "resolved": "https://registry.npmjs.org/@actions/tool-cache/-/tool-cache-1.7.1.tgz",
-      "integrity": "sha512-y1xxxOhXaBUIUit3lhepmu/0xdgiTMpnZRLmVdtF0hTm521doi+MdRRRP62czHvM7wxH6epj4JPNJQ3iJpOrkQ==",
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/@actions/tool-cache/-/tool-cache-2.0.1.tgz",
+      "integrity": "sha512-iPU+mNwrbA8jodY8eyo/0S/QqCKDajiR8OxWTnSk/SnYg0sj8Hp4QcUEVC1YFpHWXtrfbQrE13Jz4k4HXJQKcA==",
       "requires": {
         "@actions/core": "^1.2.6",
         "@actions/exec": "^1.0.0",
-        "@actions/http-client": "^1.0.8",
+        "@actions/http-client": "^2.0.1",
         "@actions/io": "^1.1.1",
         "semver": "^6.1.0",
         "uuid": "^3.3.2"
       },
       "dependencies": {
+        "@actions/http-client": {
+          "version": "2.2.0",
+          "resolved": "https://registry.npmjs.org/@actions/http-client/-/http-client-2.2.0.tgz",
+          "integrity": "sha512-q+epW0trjVUUHboliPb4UF9g2msf+w61b32tAkFEwL/IwP0DQWgbCMM0Hbe3e3WXSKz5VcUXbzJQgy8Hkra/Lg==",
+          "requires": {
+            "tunnel": "^0.0.6",
+            "undici": "^5.25.4"
+          }
+        },
         "semver": {
           "version": "6.3.0",
           "resolved": "https://registry.npmjs.org/semver/-/semver-6.3.0.tgz",
           "integrity": "sha512-b39TBaTSfV6yBrapU89p5fKekE2m/NwnDocOVruQFS1/veMgdzuPcnOM34M6CwxW8jH/lxEa5rBoDeUwu5HHTw=="
+        },
+        "uuid": {
+          "version": "3.4.0",
+          "resolved": "https://registry.npmjs.org/uuid/-/uuid-3.4.0.tgz",
+          "integrity": "sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A=="
         }
       }
     },
+    "@fastify/busboy": {
+      "version": "2.1.0",
+      "resolved": "https://registry.npmjs.org/@fastify/busboy/-/busboy-2.1.0.tgz",
+      "integrity": "sha512-+KpH+QxZU7O4675t3mnkQKcZZg56u+K/Ct2K+N2AZYNVK8kyeo/bI18tI8aPm3tvNNRyTWfj6s5tnGNlcbQRsA=="
+    },
     "@octokit/auth-token": {
       "version": "2.5.0",
       "resolved": "https://registry.npmjs.org/@octokit/auth-token/-/auth-token-2.5.0.tgz",
@@ -493,6 +543,12 @@
         "@octokit/openapi-types": "^11.2.0"
       }
     },
+    "@types/uuid": {
+      "version": "8.3.4",
+      "resolved": "https://registry.npmjs.org/@types/uuid/-/uuid-8.3.4.tgz",
+      "integrity": "sha512-c/I8ZRb51j+pYGAu5CrFMRxqZ2ke4y2grEBO5AUjgSkSk+qT2Ea+OdWElz/OiMf5MNpn2b17kuVBwZLQJXzihw==",
+      "dev": true
+    },
     "@vercel/ncc": {
       "version": "0.36.1",
       "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.36.1.tgz",
@@ -551,15 +607,23 @@
       "resolved": "https://registry.npmjs.org/tunnel/-/tunnel-0.0.6.tgz",
       "integrity": "sha512-1h/Lnq9yajKY2PEbBadPXj3VxsDDu844OnaAo52UVmIzIvwwtBPIuNvkjuzBlTWpfJyUbG3ez0KSBibQkj4ojg=="
     },
+    "undici": {
+      "version": "5.28.3",
+      "resolved": "https://registry.npmjs.org/undici/-/undici-5.28.3.tgz",
+      "integrity": "sha512-3ItfzbrhDlINjaP0duwnNsKpDQk3acHI3gVJ1z4fmwMK31k5G9OVIAMLSIaP6w4FaGkaAkN6zaQO9LUvZ1t7VA==",
+      "requires": {
+        "@fastify/busboy": "^2.0.0"
+      }
+    },
     "universal-user-agent": {
       "version": "6.0.0",
       "resolved": "https://registry.npmjs.org/universal-user-agent/-/universal-user-agent-6.0.0.tgz",
       "integrity": "sha512-isyNax3wXoKaulPDZWHQqbmIx1k2tb9fb3GGDBRxCscfYV2Ch7WxPArBsFEG8s/safwXTT7H4QGhaIkTp9447w=="
     },
     "uuid": {
-      "version": "3.4.0",
-      "resolved": "https://registry.npmjs.org/uuid/-/uuid-3.4.0.tgz",
-      "integrity": "sha512-HjSDRw6gZE5JMggctHBcjVak08+KEVhSIiDzFnT9S9aegmp85S/bReBVTb4QTFaRNptJ9kuYaNhnbNEOkbKb/A=="
+      "version": "8.3.2",
+      "resolved": "https://registry.npmjs.org/uuid/-/uuid-8.3.2.tgz",
+      "integrity": "sha512-+NYs2QeMWy+GWFOEm9xnn6HCDp0l7QBD7ml8zLUmJ+93Q5NF0NocErnwkTkXVFNiX3/fpC6afS8Dhb/gz7R7eg=="
     },
     "webidl-conversions": {
       "version": "3.0.1",

From 9672fa71604d138c34ee2e724c6f9760c7bedb55 Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 22 Feb 2024 10:41:17 +0000
Subject: [PATCH 4/6] changes to image used in critical to maintain the same
 logic

---
 src/commenter.js | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/src/commenter.js b/src/commenter.js
index f4f9eea..c720881 100644
--- a/src/commenter.js
+++ b/src/commenter.js
@@ -4,7 +4,7 @@ const { summary } = require('@actions/core/lib/summary');
 const kicsLogo = "https://user-images.githubusercontent.com/111127232/203838108-ad537fea-4573-495a-9619-18500ee81dd9.png"
 const severityOrder = ["CRITICAL","HIGH", "MEDIUM", "LOW", "INFO", "TRACE"];
 const severityIcons = {
-    "CRITICAL": "https://raw.githubusercontent.com/Checkmarx/kics-github-action/4d8cbbe0ba84707403c8715f72a5ba12c90887ef/images/Critical.png",
+    "CRITICAL": "https://github.com/Checkmarx/kics-github-action/assets/153724638/fde32f53-95ac-4ca5-acca-46879bbbf36a",
     "HIGH": "https://user-images.githubusercontent.com/23239410/92157087-97285600-ee32-11ea-988f-0aca12c4c126.png",
     "MEDIUM": "https://user-images.githubusercontent.com/23239410/92157093-98598300-ee32-11ea-83d7-af52251a011b.png",
     "LOW": "https://user-images.githubusercontent.com/23239410/92157091-98598300-ee32-11ea-8498-19bd7d62019b.png",
@@ -29,8 +29,8 @@ function createComment(results, withQueries = false, excludedColumnsForCommentsW
             message += `| ![${severity}](${severityIcons[severity]}) | ${severity.toUpperCase()} | ${severityCounters[severity.toUpperCase()]} |\n`;
         }
         else {
-            const imageTag = `<img src="${severityIcons[severity]}" alt="${severity}" width="25">`;
-            message += `| ${imageTag} | ${severity.toUpperCase()} | 0 |\n`;
+            //const imageTag = `<img src="${severityIcons[severity]}" alt="${severity}" width="25">`;
+            message += `| ![${severity}](${severityIcons[severity]}) | ${severity.toUpperCase()} | 0 |\n`;
         }
     }
     message += `| ![TOTAL](${emptyIcon}) | TOTAL | ${results['total_counter']} |`;

From 48afbab34e0ff6133ce998ab4896348b58cded71 Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 22 Feb 2024 10:46:00 +0000
Subject: [PATCH 5/6] delete critical.png image and remove comment

---
 images/Critical.png | Bin 1279 -> 0 bytes
 src/commenter.js    |   1 -
 2 files changed, 1 deletion(-)
 delete mode 100644 images/Critical.png

diff --git a/images/Critical.png b/images/Critical.png
deleted file mode 100644
index 170c1f7b614bad3c9e2f4a193cf57a5c19aa9e48..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 1279
zcmV<b1OWSqP)<h;3K|Lk000e1NJLTq001!n001!v1^@s6bDTjO00001b5ch_0Itp)
z=>Px#1ZP1_K>z@;j|==^1poj9sYygZRA@u(nO$gHMHI)+OgA4k1X8LLqCyg+iN?yU
zwo;4W7Gq;YC8E#|1e+J*7n%n}{6O0WsX?Ww`k+s?KGZ(hq9RSLxI(q|!*n&SrbTEF
zToo;?reaKX?>J}fxwzTg`PjX8C6)YOvggbuoB7Y2IdkqT6GFg+4yV@(nt2g(g_?>;
zwIv&|ky|rrCSqjSimu$kKMrF<o4RX4O+<`b<@NEre;62e*wDs4dOLPvO|dD@Yst;<
z=cPFq^pr51sPnfb)9G{M$3iS3)ZnN2p!}rA7=sq-E{ptk=NQ0_M7=*8mzYQ*4s?4S
z7rf79@WluaQw-P}KKQ%VX3}Zut_o)nYPNIWi9C3W^PA+KB`Y1c4iqGRq@<`L!2J~V
zCC;~ek(@|Psb8?56%oubdj}Y+X=ZUju2#QXt)1kSpv_JkXL$|?aAE$$o-53Y&{2Q!
zVpwupFLXRSpxR~Y?}6s7PI@<fwAtz4)m{<=|Abs8aPXZ^KCT4lI5qS#{P6Z}^4zF8
zJNfctCDRF<>6N>883iCqrO2-5o+d9I^dj=^B6veRT=VKHaM7i$)D!U6k6Fm>dk=p9
zYK(dUFuaz%w2i#z#Ih%@7<_b=0RQi4_;U08@Y&ki;oE1nz_CsD!HI!K=-mKZv8MJm
z@}d!01g=8sU3ZWdF!sb#aQ4`7@&e8r`W$}!c=i@sbo~mlEco15erPxL{w}XAv4Ec@
zSIgoXSHto*UndV>a{MG5xqBmdv%!tu)ZR`Wz*IJ?Le2{F*YtdoRy9>Qv@3DzczS|N
zBgOjwMd+CR?TlKXusI2k$imY&mdN3Rvs=jdlc&gvkH)E%pUEtXQG|@NiXU2deFItX
zfMc+g<VF#UiE%QuV2Bjb+_{vjcwiumtAN<T$@;`q9M=mw^l20KPgsgzTeQ+4J27UR
zNOL&(LcdE1+@QJ1N%De|`;wd2kT;vl@7)9)4@m*knhb(NgztY!rWSKJac-RjJlL{(
z-zP7i`-Lqf2N?>(le&<zM`xcU<;V-zN2V6zGd4a~&&;r&<g>5w7BA7<468qQw<J^j
zd3r*Y9AB$2Dh{1rJ{(bpqJ@c`%;>)diw5IL;FSvANRX=q!wJiZ!mvVcHCp@bED?b9
zROVT{p0Z+H1;n<oA(!`ekZB}5sj<8;@%{GKR6T`Z=)efQ8Zm}b$iePw_sSRNYe)>A
zCF^=sU4>v8Mv=wUtO+@))Ge9O@)@ECHxX4lAVoz!2rYNLRI`Q?LdBO;e8$9ZCAWf3
zB9KI#-!E6qdU{3$%ZvmhhRAioS%k_|T$Hb|V?y1}GT4~R9Ia@woJAl(SP5%#uNL96
zet9nJC)b&ZL?Atx6ED_6h`Q1EZgda172%Yf%5k9E+suK#MQ$W)S28v#UWpL;r|TkZ
zb|J=P2;C4x08;fzgalu4v2F6B9-uBO!51vBH3-e<L>3Y9(UsS&V%*;@KXMgyl?6{?
zpYsQM$BtVoWLIJn5u(H}F(8=O5LUlx<^|i6U%-dr9DGRZB0^LdKg~DDyxCaS06XLU
p#<Y-{iTE$6Iy=oJ{s$re{s95!;+_HZQ$+v(002ovPDHLkV1kbfYDfS8

diff --git a/src/commenter.js b/src/commenter.js
index c720881..950423b 100644
--- a/src/commenter.js
+++ b/src/commenter.js
@@ -29,7 +29,6 @@ function createComment(results, withQueries = false, excludedColumnsForCommentsW
             message += `| ![${severity}](${severityIcons[severity]}) | ${severity.toUpperCase()} | ${severityCounters[severity.toUpperCase()]} |\n`;
         }
         else {
-            //const imageTag = `<img src="${severityIcons[severity]}" alt="${severity}" width="25">`;
             message += `| ![${severity}](${severityIcons[severity]}) | ${severity.toUpperCase()} | 0 |\n`;
         }
     }

From 9ff796f8f53d1278999af1ad368368f55a7c5fb7 Mon Sep 17 00:00:00 2001
From: Artur Ribeiro <artur.ribeiro@checkmarx.com>
Date: Thu, 22 Feb 2024 11:00:26 +0000
Subject: [PATCH 6/6] change image for critical severity for no background

---
 src/commenter.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/commenter.js b/src/commenter.js
index 950423b..ec596f1 100644
--- a/src/commenter.js
+++ b/src/commenter.js
@@ -4,7 +4,7 @@ const { summary } = require('@actions/core/lib/summary');
 const kicsLogo = "https://user-images.githubusercontent.com/111127232/203838108-ad537fea-4573-495a-9619-18500ee81dd9.png"
 const severityOrder = ["CRITICAL","HIGH", "MEDIUM", "LOW", "INFO", "TRACE"];
 const severityIcons = {
-    "CRITICAL": "https://github.com/Checkmarx/kics-github-action/assets/153724638/fde32f53-95ac-4ca5-acca-46879bbbf36a",
+    "CRITICAL": "https://github.com/Checkmarx/kics-github-action/assets/153724638/e73da659-8985-43a5-bb3c-ddbecd786690",
     "HIGH": "https://user-images.githubusercontent.com/23239410/92157087-97285600-ee32-11ea-988f-0aca12c4c126.png",
     "MEDIUM": "https://user-images.githubusercontent.com/23239410/92157093-98598300-ee32-11ea-83d7-af52251a011b.png",
     "LOW": "https://user-images.githubusercontent.com/23239410/92157091-98598300-ee32-11ea-8498-19bd7d62019b.png",