Update build_container_image.yml reference to feat-print-dep-versions #5
GitHub Actions / forge-k8s:main-linux-amd64 scan results
succeeded
Jan 10, 2024 in 0s
1 fail in 0s
Annotations
Check warning on line 0 in tough-cookie-2.5.0
github-actions / forge-k8s:main-linux-amd64 scan results
[MEDIUM] CVE-2023-26136 (tough-cookie-2.5.0) failed
trivy-junit-results.xml
Raw output
tough-cookie: prototype pollution in cookie memstore
Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized.
Loading