typetools/checker-framework 3.43.0 release · eisop/checker-framework@897ae57

Triggered via pull request February 5, 2025 01:55

wmdietl

synchronize #1080

typetools-3.43.0-fixes

Status Failure

Total duration 10m 53s

Artifacts –

dependency-review.yml

on: pull_request

1 error and 10 warnings

Dependency review detected vulnerable packages.

maven/com.diffplug.durian:durian-collect has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/com.diffplug.durian:durian-core has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/com.diffplug.durian:durian-io has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/com.esotericsoftware:minlog has an OpenSSF Scorecard of 2.8, which is less than this repository's threshold of 3.

maven/org.glassfish.hk2.external:aopalliance-repackaged has an OpenSSF Scorecard of 1.8, which is less than this repository's threshold of 3.

maven/org.glassfish.hk2:hk2-locator has an OpenSSF Scorecard of 1.8, which is less than this repository's threshold of 3.

maven/org.glassfish.hk2:hk2-utils has an OpenSSF Scorecard of 1.8, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib-common has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib-jdk7 has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.