Skip to content

Moving "software.amazon.awssdk" dependencies to the compileOnly scope…

Mend for GitHub.com / WhiteSource Security Check failed Sep 22, 2023 in 2m 23s

Security Report

The Security Check found 1 vulnerabilities.

CVE Severity CVSS Score Vulnerable Library Suggested Fix Issue
CVE-2023-2976

Path to dependency file: /build.gradle.kts

Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.guava/guava/31.0.1-jre/119ea2b2bc205b138974d351777b20f02b92704b/guava-31.0.1-jre.jar,/home/wss-scanner/.gradle/caches/modules-2/files-2.1/com.google.guava/guava/31.0.1-jre/119ea2b2bc205b138974d351777b20f02b92704b/guava-31.0.1-jre.jar

Dependency Hierarchy:

-> checkstyle-9.3.jar (Root Library)

   -> ❌ guava-31.0.1-jre.jar (Vulnerable Library)

High 7.1 guava-31.0.1-jre.jar Upgrade to version: com.google.guava:guava:32.0.1-android,32.0.1-jre #531

Total libraries scanned: 151
Scan token: 682afbf6b70c4bbf916f3a9632e93826
View more details on Mend for GitHub.com