Skip to content
Build

ci: add/update workflow for autosquash on PRs #28

Sign in to view logs

ci: add/update workflow for autosquash on PRs

ci: add/update workflow for autosquash on PRs #28

Triggered via push July 10, 2024 09:06
@wetransform-githubwetransform-github[bot]
pushed 21002d9
master
Status Failure
Total duration 1m 20s
Artifacts 3

build.yml

on: push
build  /  ...  /  run
1m 9s
build / build / run
Fit to window
Zoom out
Zoom in

Annotations

9 errors
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2017-11467: 1#L1
OrientDB vulnerable to Improper Privilage Management leading to arbitrary command injection
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
1.[CRITICAL] CVE-2015-7501: 1#L1
apache-commons-collections: InvokerTransformer code execution during deserialisation
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
8.[CRITICAL] CVE-2024-1597: 8#L1
pgjdbc: PostgreSQL JDBC Driver allows attacker to inject SQL if using PreferQueryMode=SIMPLE
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
RELEASE.[CRITICAL] CVE-2022-22965: RELEASE#L1
spring-framework: RCE via Data Binding on JDK 9+
build / build / run
❌ Tests reported 8 failures

Artifacts

Produced during runtime
Name Size
SBOM (CycloneDX) [run] Expired
103 KB
Vulnerability report (HTML) [run] Expired
21.2 KB
wetransform-os~conversion-hale~LPEXOA.dockerbuild
22.1 KB