GH-120 Update all dependencies #120
Security Report
❌ New vulnerabilities:
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2022-1471Path to dependency file: /chatformatter-core/build.gradle.kts Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.yaml/snakeyaml/1.33/2cd0a87ff7df953f810c344bdf2fe3340b954c69/snakeyaml-1.33.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/org.yaml/snakeyaml/1.33/2cd0a87ff7df953f810c344bdf2fe3340b954c69/snakeyaml-1.33.jar Dependency Hierarchy: -> spigot-api-1.19.3-R0.1-SNAPSHOT.jar (Root Library) -> ❌ snakeyaml-1.33.jar (Vulnerable Library) |
 Critical |
9.8 | snakeyaml-1.33.jar | Upgrade to version: org.yaml:snakeyaml:2.0 | None |
CVE-2023-2976Path to dependency file: /chatformatter-core/build.gradle.kts Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.guava/guava/31.1-jre/60458f877d055d0c9114d9e1a2efb737b4bc282c/guava-31.1-jre.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.guava/guava/31.1-jre/60458f877d055d0c9114d9e1a2efb737b4bc282c/guava-31.1-jre.jar Dependency Hierarchy: -> spigot-api-1.19.3-R0.1-SNAPSHOT.jar (Root Library) -> ❌ guava-31.1-jre.jar (Vulnerable Library) |
 High |
7.1 | guava-31.1-jre.jar | Upgrade to version: com.google.guava:guava:32.0.1-android,32.0.1-jre | None |
Base branch total remaining vulnerabilities: 0
Base branch commit: 39cfdc97a3417cc859ff42ea34c1ddd5d2f4e97a
Total libraries scanned: 87
Scan token: 0c23e2b2524a46c7948db26111a0c233