Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

TD-604 - Change code scanning triggers and frequency #28

Merged
merged 1 commit into from
Sep 5, 2023
Merged

TD-604 - Change code scanning triggers and frequency #28

merged 1 commit into from
Sep 5, 2023

Conversation

organization-code-manager[bot]
Copy link

This PR changes the code scanning triggers and frequency to monthly. For more information, consult the Sharepoint news post.

@vulnerability-report
Copy link

🤖 Vulnerability Report

  • Critical: 1 vulnerabilities
  • High: 12 vulnerabilities
  • Low: 1 vulnerabilities
  • Moderate: 9 vulnerabilities
View details
  • (critical) [npm] lodash - Prototype Pollution in lodash
  • (high) [npm] tough-cookie - Regular Expression Denial of Service in tough-cookie
  • (high) [npm] lodash - Prototype Pollution in lodash
  • (high) [npm] elliptic - Signature Malleabillity in elliptic
  • (high) [npm] lodash - Command Injection in lodash
  • (high) [npm] ssh2 - OS Command Injection in ssh2
  • (high) [npm] follow-redirects - Exposure of sensitive information in follow-redirects
  • (high) [npm] node-fetch - node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor
  • (high) [npm] lodash - Prototype Pollution in lodash
  • (high) [npm] axios - axios Inefficient Regular Expression Complexity vulnerability
  • (high) [npm] moment - Path Traversal: 'dir/../../filename' in moment.locale
  • (high) [npm] moment - Moment.js vulnerable to Inefficient Regular Expression Complexity
  • (high) [npm] minimatch - minimatch ReDoS vulnerability
  • (moderate) [npm] tough-cookie - ReDoS via long string of semicolons in tough-cookie
  • (moderate) [npm] lodash - Regular Expression Denial of Service (ReDoS) in lodash
  • (moderate) [npm] base64url - Out-of-bounds Read in base64url
  • (moderate) [npm] elliptic - Use of a Broken or Risky Cryptographic Algorithm
  • (moderate) [npm] lodash - Regular Expression Denial of Service (ReDoS) in lodash
  • (moderate) [npm] follow-redirects - Exposure of Sensitive Information to an Unauthorized Actor in follow-redirects
  • (moderate) [npm] @actions/core - @actions/core has Delimiter Injection Vulnerability in exportVariable
  • (moderate) [npm] tough-cookie - tough-cookie Prototype Pollution vulnerability
  • (moderate) [npm] semver - semver vulnerable to Regular Expression Denial of Service
  • (low) [npm] lodash - Prototype Pollution in lodash

@bartwesselink bartwesselink merged commit 32735b5 into main Sep 5, 2023
@bartwesselink bartwesselink deleted the feature/TD-604-change-code-scanning-triggers-and-frequency branch September 5, 2023 08:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bartwesselink bartwesselink bartwesselink approved these changes

Assignees
No one assigned
Labels
code-scanning-frequency
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@bartwesselink