Veraocde SCA Scan failed with exit code 7 Veracode SCA agent scanning engine ready Running the NPM scanner npm WARN config only Use `--omit=dev` to omit dev dependencies from the install. Scanning completed Found 0 lines of code Processing results... Processing results complete Summary Report Scan ID 23adc06f-816a-4727-adc6-e8c48b43a5f1 Scan Date & Time Feb 23 2024 04:04AM UTC Account type ENTERPRISE Scan engine 3.8.46 (latest 3.8.46) Analysis time 21 seconds User runner Project /home/runner/work/veracode-sca/veracode-sca Package Manager(s) NPM Open-Source Libraries Total Libraries 40 Direct Libraries 2 Transitive Libraries 38 Vulnerable Libraries 2 Third Party Code 100% Security With Vulnerable Methods 0 Critical Risk Vulnerabilities 0 High Risk Vulnerabilities 0 Medium Risk Vulnerabilities 2 Low Risk Vulnerabilities 1 Vulnerabilities - Public Data CVE-2024-24750 Medium Risk Denial Of Service (DoS) undici 5.27.2 CVE-2024-24758 Low Risk Proxy-Authentication Header Leakage undici 5.27.2 Vulnerabilities - Premium Data NO-CVE Medium Risk Memory Leak inflight 1.0.6 Licenses Unique Library Licenses 4 Libraries Using GPL 0 Libraries With High Risk License 0 Libraries With Medium Risk License 0 Libraries With Low Risk License 40 Libraries With Multiple Licenses 0 Libraries With Unassessable License 0 Libraries With Unrecognizable License 0 Issues Issue ID Issue Type Severity Description Library Name & Version In Use 201254253 Vulnerability 4.9 NO-CVE: Memory Leak inflight 1.0.6 267668381 Outdated Library 3.0 Latest version at scan: 6.0.0 @actions/github 5.1.1 268135784 Outdated Library 3.0 Latest version at scan: 2.0.1 @actions/artifact 1.1.2 276803178 Vulnerability 7.1 CVE-2024-24750: Denial Of Service (DoS) undici 5.27.2 276803179 Vulnerability 4.3 CVE-2024-24758: Proxy-Authentication Header Leakage undici 5.27.2 Full Report Details https://sca.analysiscenter.veracode.com/teams/700tzKDV/scans/61870287

Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v2, veracode/[email protected]. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.

The following actions uses node12 which is deprecated and will be forced to run on node16: actions/checkout@v2. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/