Skip to content

EPAM-161 Extended pendo integration #23

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
tamasnyulas-si merged 5 commits into from
Apr 2, 2025

Minor frontend components update

e9069dd
Select commit
Loading
Failed to load commit list.
Merged

EPAM-161 Extended pendo integration #23

Minor frontend components update
e9069dd
Select commit
Loading
Failed to load commit list.
This check has been archived and is scheduled for deletion. Learn more about checks retention
Veracode Workflow App / Veracode Software Composition Analysis succeeded Apr 2, 2025 in 55s

Veracode Software Composition Analysis

Veracode SCA agent scanning engine ready
Searching for supported projects (this may take a minute)...
[Composer]     Scanning /home/runner/work/veracode/veracode
[NPM]          Scanning /home/runner/work/veracode/veracode
2025-04-02/12:24:46.740 com.sourceclear.engine.component.collectors.npm.NPMNativeCollector	WARN	Attempt to invoke npm failed; falling back to lockfile
Processing results...
Processing results complete

Summary Report
Scan ID                                        f77d8d2e-b974-43c0-a93d-d4887b7848a9
Scan Date & Time                               Apr 02 2025 12:24PM UTC
Account type                                   ENTERPRISE
Scan engine                                    3.8.96 (latest 3.8.96)
Analysis time                                  22 seconds
User                                           runner
Project                                        /home/runner/work/veracode/veracode
Package Manager(s)                             Composer, NPM

Open-Source Libraries
Total Libraries                                275
Direct Libraries                               9
Transitive Libraries                           271
Vulnerable Libraries                           2

Security
With Vulnerable Methods                        0
Critical Risk Vulnerabilities                  0
High Risk Vulnerabilities                      2
Medium Risk Vulnerabilities                    1
Low Risk Vulnerabilities                       0

Vulnerabilities - Public Data
CVE-2022-21680                                 High Risk         Regular Expression Denial Of Service (ReDoS)     marked 2.1.3
CVE-2022-21681                                 High Risk         Regular Expression Denial Of Service (ReDoS)     marked 2.1.3
CVE-2025-27789                                 Medium Risk       Regular Expression Denial Of Service (ReDoS)     @babel/runtime 7.25.7

Licenses
Unique Library Licenses                        9
Libraries Using GPL                            0
Libraries With High Risk License               2
Libraries With Medium Risk License             0
Libraries With Low Risk License                274
Libraries With Multiple Licenses               2
Libraries With Unassessable License            1
Libraries With Unrecognizable License          0

Issues
Issue ID     Issue Type          Severity    Description                                                     Library Name & Version In Use
389798985    Outdated Library    3.0         Latest version at scan: 4.0.x-dev                               squizlabs/php_codesniffer 3.11.3
389798986    License             9.0         Library has High-Risk License                                   phpcsstandards/phpcsutils 1.0.12
391855980    Vulnerability       7.5         CVE-2022-21680: Regular Expression Denial Of Service (ReDoS)    marked 2.1.3
391855981    Vulnerability       7.5         CVE-2022-21681: Regular Expression Denial Of Service (ReDoS)    marked 2.1.3
391855982    Vulnerability       6.2         CVE-2025-27789: Regular Expression Denial Of Service (ReDoS)    @babel/runtime 7.25.7
391855983    Outdated Library    3.0         Latest version at scan: 0.103.0                                 @siteimprove/alfa-act 0.101.0
391855984    Outdated Library    3.0         Latest version at scan: 0.103.0                                 @siteimprove/alfa-json 0.101.0
391857585    Outdated Library    3.0         Latest version at scan: 0.103.0                                 @siteimprove/alfa-rules 0.101.0
391857586    Outdated Library    3.0         Latest version at scan: 0.79.0                                  @siteimprove/alfa-test-utils 0.78.2


Full Report Details                            https://sca.analysiscenter.veracode.com/teams/N22URZy4/scans/86098507
View more details on Veracode Workflow App