Skip to content
Build

chore(deps): update wetransform/gha-workflows action to v2.5.0 #34

Sign in to view logs

chore(deps): update wetransform/gha-workflows action to v2.5.0

chore(deps): update wetransform/gha-workflows action to v2.5.0 #34

Triggered via pull request August 22, 2024 00:56
@renovaterenovate[bot]
synchronize #12
renovate/wetransform-gha-workflows-2.x
Status Failure
Total duration 1m 9s
Artifacts 3

build.yml

on: pull_request
build  /  ...  /  run
1m 0s
build / build / run
Fit to window
Zoom out
Zoom in

Annotations

9 errors
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
build / build / run
❌ Tests reported 8 failures

Artifacts

Produced during runtime
Name Size
SBOM (CycloneDX) [run] Expired
102 KB
Vulnerability report (HTML) [run] Expired
22.6 KB
wetransform-os~conversion-hale~54WVM4.dockerbuild
24.1 KB