security-advisory

Clone Tools
  • last updated a few seconds ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates

Changeset {id} does not exist.

fix: upgrade org.flywaydb:flyway-core from 6.3.0 to 6.3.1

Snyk has created this PR to upgrade org.flywaydb:flyway-core from 6.3.0 to 6.3.1.

See this package in NPM:

https://www.npmjs.com/package/org.flywaydb:flyway-core

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

fix: upgrade org.postgresql:postgresql from 42.2.10 to 42.2.11.jre7

Snyk has created this PR to upgrade org.postgresql:postgresql from 42.2.10 to 42.2.11.jre7.

See this package in NPM:

https://www.npmjs.com/package/org.postgresql:postgresql

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

fix: upgrade org.webjars:jquery from 3.4.0 to 3.4.1

Snyk has created this PR to upgrade org.webjars:jquery from 3.4.0 to 3.4.1.

See this package in NPM:

https://www.npmjs.com/package/org.webjars:jquery

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

bump pg

Merge pull request #7 from MidnightBSD/snyk-upgrade-67b621bcb7f6b3ce8ede9e2fedb5322a

[Snyk] Upgrade org.jboss.spec.javax.transaction:jboss-transaction-api_1.1_spec from 1.0.0.Final to 1.0.1.Final

Merge pull request #8 from MidnightBSD/snyk-upgrade-0a1e8f8920676e1eb6cfb7291bc5c639

[Snyk] Upgrade com.github.vanroy:spring-boot-starter-data-jest from 3.3.0.RELEASE to 3.3.1.RELEASE

fix: upgrade org.webjars:angularjs from 1.7.8 to 1.7.9

Snyk has created this PR to upgrade org.webjars:angularjs from 1.7.8 to 1.7.9.

See this package in NPM:

https://www.npmjs.com/package/org.webjars:angularjs

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

fix: upgrade com.github.vanroy:spring-boot-starter-data-jest from 3.3.0.RELEASE to 3.3.1.RELEASE

Snyk has created this PR to upgrade com.github.vanroy:spring-boot-starter-data-jest from 3.3.0.RELEASE to 3.3.1.RELEASE.

See this package in NPM:

https://www.npmjs.com/package/com.github.vanroy:spring-boot-starter-data-jest

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

fix: upgrade org.jboss.spec.javax.transaction:jboss-transaction-api_1.1_spec from 1.0.0.Final to 1.0.1.Final

Snyk has created this PR to upgrade org.jboss.spec.javax.transaction:jboss-transaction-api_1.1_spec from 1.0.0.Final to 1.0.1.Final.

See this package in NPM:

https://www.npmjs.com/package/org.jboss.spec.javax.transaction:jboss-transaction-api_1.1_spec

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

fix: upgrade org.postgresql:postgresql from 42.2.5 to 42.2.10.jre7

Snyk has created this PR to upgrade org.postgresql:postgresql from 42.2.5 to 42.2.10.jre7.

See this package in NPM:

https://www.npmjs.com/package/org.postgresql:postgresql

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

feat: upgrade org.webjars:angular-ui-bootstrap from 0.12.1 to 2.5.0

Snyk has created this PR to upgrade org.webjars:angular-ui-bootstrap from 0.12.1 to 2.5.0.

See this package in NPM:

https://www.npmjs.com/package/org.webjars:angular-ui-bootstrap

See this project in Snyk:

https://app.snyk.io/org/laffer1-github-marketplace/project/e7e2bf79-0576-464e-bf6c-3b4e4408f894?utm_source=github&utm_medium=upgrade-pr

upgrade angular to 1.7.x

    • -5
    • +5
    /src/main/resources/templates/index.html
update copyright.

    • -1
    • +1
    /src/main/resources/templates/index.html
Upgrade spring boot to 2.2.x, spring cloud to hoxton, and angularjs to 1.5.x

    • -7
    • +6
    /src/main/resources/templates/index.html
Update spring boot 2.1.x and spring cloud for security issues

Merge pull request #2 from MidnightBSD/snyk-fix-9904a690a7058747fefe84dcb1eaa1f4

[Snyk] Fix for 2 vulnerabilities

Merge pull request #4 from JLLeitschuh/fix/JLL/use_https_to_resolve_dependencies

[SECURITY] Use HTTPS to resolve dependencies in Maven Build

Use HTTPS instead of HTTP to resolve dependencies

This fixes a security vulnerability in this project where the `pom.xml`

files were configuring Maven to resolve dependencies over HTTP instead of

HTTPS.

Signed-off-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>

fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:

- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-479774

- https://snyk.io/vuln/SNYK-JAVA-ORGWEBJARS-479782

Fix the security advisory client's endpoint by breaking it up into multiple queries rather than one large join. PG 11.x seems to choke on it in RDS although 9.6 is somewhat ok on midnightbsd. all well. Even on 9.6/midnightbsd it's twice as fast this way.

make this a composite key

    • -0
    • +2
    /src/main/resources/db/migration/V1_7__pk_adv_map.sql
Upgrade spring cloud release.

    • -0
    • +3
    /src/main/resources/db/migration/V1_6__index_tweaks.sql
Upgrade to spring boot 2.1.8 (major bump) This also requires updating elasticsearch to 6.4.x

travis update

Code cleanup. Disable a cache that's crashing with some input.

update spring boot and lombok

Merge pull request #1 from fossabot/master

Add license scan report and status

Add license scan report and status

Signed-off-by: fossabot <badges@fossa.io>

update some libraries.