Update dependency org.slf4j:slf4j-api to v2.0.17 #115
Security Report
❌ New vulnerabilities:
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2024-30172Path to dependency file: /ksef-dss-facade/pom.xml Path to vulnerable library: /ksef-dss-facade/pom.xml Dependency Hierarchy: -> digital-signature-1.15.jar (Root Library) -> ❌ bcprov-jdk18on-1.77.jar (Vulnerable Library) |
 High |
7.5 | bcprov-jdk18on-1.77.jar | Upgrade to version: org.bouncycastle:bcprov-jdk18on:1.78,org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk14:1.78, BouncyCastle.Cryptography - 2.3.1 | None |
CVE-2024-29857Path to dependency file: /ksef-dss-facade/pom.xml Path to vulnerable library: /ksef-dss-facade/pom.xml Dependency Hierarchy: -> digital-signature-1.15.jar (Root Library) -> ❌ bcprov-jdk18on-1.77.jar (Vulnerable Library) |
High |
7.5 | bcprov-jdk18on-1.77.jar | Upgrade to version: org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk18on:1.78, BouncyCastle.Cryptography - 2.3.1 | None |
CVE-2024-30171Path to dependency file: /ksef-dss-facade/pom.xml Path to vulnerable library: /ksef-dss-facade/pom.xml Dependency Hierarchy: -> digital-signature-1.15.jar (Root Library) -> ❌ bcprov-jdk18on-1.77.jar (Vulnerable Library) |
 Medium |
5.9 | bcprov-jdk18on-1.77.jar | Upgrade to version: org.bouncycastle:bcprov-jdk15to18:1.78, org.bouncycastle:bcprov-jdk18on:1.78, BouncyCastle.Cryptography - 2.3.1 | None |
Base branch total remaining vulnerabilities: 0
Base branch commit: 782376e8a0f7b0f64bb7360bc37f54f317393605
Total libraries scanned: 74
Scan token: 2ca63a784313457a9f2115dcef65c31c