Skip to content

Fixing S360 Vulnerability

Himanshu Kumrawat requested to merge hkumrawat/S360VulnerabilityFix33752 into azure/m18-master

Fixing following vulnerabilities:

VulnerabilityId VulnerabilityName
996112 Java (Maven) Security Update for ch.qos.logback:logback-classic (GHSA-vmq6-5m68-f53m)

Testing:

Screenshot 2024-01-25 200238.png

Screenshot 2024-01-25 200549.png

Screenshot 2024-01-25 200616.png

Trivy Scan:

aquasec/trivy:0.19.2 scan result doesn't include fixed vulnerability.

image.png

Dependency Analyzer (origin/azure/m18-master)

image.png

Dependency Analyzer (origin/hkumrawat/S360VulnerabilityFix33752)

image.png

Edited by Himanshu Kumrawat

Merge request reports