Skip to content
Build

ci: add/update workflow for autosquash on PRs #25

Sign in to view logs

ci: add/update workflow for autosquash on PRs

ci: add/update workflow for autosquash on PRs #25

Triggered via push July 1, 2024 13:36
@wetransform-githubwetransform-github[bot]
pushed bd1cb6c
master
Status Failure
Total duration 1m 17s
Artifacts 3

build.yml

on: push
build  /  ...  /  run
1m 8s
build / build / run
Fit to window
Zoom out
Zoom in

Annotations

9 errors
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
build / build / run
❌ Tests reported 8 failures

Artifacts

Produced during runtime
Name Size
SBOM (CycloneDX) [run] Expired
97.4 KB
Vulnerability report (HTML) [run] Expired
22.8 KB
wetransform-os~conversion-hale~H72W46.dockerbuild Expired
21.7 KB