Report the use of components with vulnerabilities in Aeraki #421
Labels
help wanted
Extra attention is needed
Comments
HouqiyuA
changed the title
|
Hi @HouqiyuA Thanks for the report. Are you looking to use Aeraki in your product? |
|
thank you for your repl !
Yes, I found that some vulnerable components were introduced in this
project, please confirm and fix them!
Huabing Zhao ***@***.***> 于2024年5月9日周四 06:58写道:
… Hi @HouqiyuA <https://github.com/HouqiyuA> Thanks for the report. Are you
looking to use Aeraki in your product?
—
Reply to this email directly, view it on GitHub
<#421 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/BBBY3LRETILTI2XIYEZZFWTZBKUZRAVCNFSM6AAAAABHK7WPR2VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDCMBRGYZTEOBYGM>
.
You are receiving this because you were mentioned.Message ID:
***@***.***>
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Dear Team Members:
Greetings! Our team is very interested in your project. we performed source code perspective security analysis (SCA) and vulnerability library association analysis on this project and found that components with vulnerabilities are still being used into this project.We would like to report this issue to you,so that you can fix and improve it accordingly. I add the details in json file below. Please confirm whether this problem really exists and confirm with us. Looking forward to hearing from you and discussing more details with us, thank you very much for your time and attention.
Note: Each "affect_components" field in the report represents the vulnerable component introduced by this project. The other is the vulnerability information associated with it.
Qiyu Hou
aeraki-master_report.json
The text was updated successfully, but these errors were encountered: