[FOLIO-3361] Update kubernetes-utilities/ci-cleanup/module-cleanup dependencies - FOLIO Issue Tracker

XML

Word

Printable

Details

Type: Bug
Status: Closed (View Workflow)
Priority: TBD
Resolution: Done
Component/s: Continuous Integration
Labels:
- security

Template:

Standard Bug Write-Up Format
Sprint:
DevOps Sprint 146
Development Team:
FOLIO DevOps

Description

https://github.com/folio-org/folio-tools/blob/master/kubernetes-utilities/ci-cleanup/module-cleanup/requirements.txt
has dependencies with security vulnerabilities:

urllib3@1.25.6: https://nvd.nist.gov/vuln/detail/CVE-2020-26137 ,
https://nvd.nist.gov/vuln/detail/CVE-2020-7212 , https://nvd.nist.gov/vuln/detail/CVE-2021-33503
rsa@4.0: https://nvd.nist.gov/vuln/detail/CVE-2020-25658 , https://nvd.nist.gov/vuln/detail/CVE-2020-13757

Please update to fixed versions, or explain why module-cleanup is not affected.

TestRail: Results

Attachments

Activity

People

Assignee:: Ian Hardy

Reporter:: Julian Ladisch

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 09/Dec/21 7:58 PM

Updated:: 08/Aug/22 2:14 PM

Resolved:: 19/Jan/22 7:41 PM

TestRail: Runs

TestRail: Cases