Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update module github.com/tdewolff/minify/v2 to v2.21.3 #21

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Update module github.com/tdewolff/minify/v2 to v2.21.3

afec7f6
Select commit
Loading
Failed to load commit list.
Open

Update module github.com/tdewolff/minify/v2 to v2.21.3 #21

Update module github.com/tdewolff/minify/v2 to v2.21.3
afec7f6
Select commit
Loading
Failed to load commit list.
Mend for GitHub.com / WhiteSource Security Check failed Jan 14, 2025 in 1m 23s

Security Report

You have successfully remediated 9 vulnerabilities, but introduced 2 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2023-42821

Path to dependency file: /go.mod

Path to vulnerable library: /go.mod

Dependency Hierarchy:

-> ❌ github.com/gomarkdown/markdown-v0.0.0-20221013030248-663e2500819c (Vulnerable Library)

High 7.5 github.com/gomarkdown/markdown-v0.0.0-20221013030248-663e2500819c None
CVE-2024-44337

Path to dependency file: /go.mod

Path to vulnerable library: /go.mod

Dependency Hierarchy:

-> ❌ github.com/gomarkdown/markdown-v0.0.0-20221013030248-663e2500819c (Vulnerable Library)

Medium 5.1 github.com/gomarkdown/markdown-v0.0.0-20221013030248-663e2500819c Upgrade to version: github.com/gomarkdown/markdown-a2a9c4f76ef5a5c32108e36f7c47f8d310322252 None

✔️ Remediated vulnerabilities:

CVE Vulnerable Library
CVE-2022-31129 github.com/tdewolff/Minify/v2-v2.9.21
WS-2017-0234 github.com/tdewolff/Minify/v2-v2.9.21
WS-2016-0075 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2020-11023 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2022-24785 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2019-11358 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2020-11022 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2016-4055 github.com/tdewolff/Minify/v2-v2.9.21
CVE-2017-18214 github.com/tdewolff/Minify/v2-v2.9.21

Base branch total remaining vulnerabilities: 9
Base branch commit: null


Total libraries scanned: 8

Scan token: ed03807cf2984699875fab7e6f62e7da

View more details on Mend for GitHub.com