upgrade gradle to 8.5 #941
Security Report
2 new vulnerabilities were introduced in this branch.
❌ New vulnerabilities:
CVE | Severity | CVSS Score | Vulnerable Library | Suggested Fix | Issue |
---|---|---|---|---|---|
CVE-2023-6481Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-core/1.2.9/cdaca0cf922c5791a8efa0063ec714ca974affe3/logback-core-1.2.9.jar Dependency Hierarchy: -> ktlint-0.45.1.jar (Root Library) -> logback-classic-1.2.9.jar -> ❌ logback-core-1.2.9.jar (Vulnerable Library) |
High | 7.5 | logback-core-1.2.9.jar | Upgrade to version: ch.qos.logback:logback-core:1.2.13,1.3.14,1.4.14 | None |
CVE-2023-6378Path to dependency file: /build.gradle Path to vulnerable library: /home/wss-scanner/.gradle/caches/modules-2/files-2.1/ch.qos.logback/logback-classic/1.2.9/7d495522b08a9a66084bf417e70eedf95ef706bc/logback-classic-1.2.9.jar Dependency Hierarchy: -> ktlint-0.45.1.jar (Root Library) -> ❌ logback-classic-1.2.9.jar (Vulnerable Library) |
High | 7.5 | logback-classic-1.2.9.jar | Upgrade to version: ch.qos.logback:logback-classic:1.3.12,1.4.12 | None |
Base branch total remaining vulnerabilities: 0
Base branch commit: b68990fed59814832800affed06e5aa4439f0918
Total libraries scanned: 188
Scan token: cfeba83ff92143be922e1113f8a00c43