You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Following vulnerabilities are flagged using snyk cli and not from synk dashboard. More on snyk dashboard discrepancies on slack thread here :
FEC-CMS: 5
package.json: 2
[Snyk Medium dompurify Template Injection] (fecgov/fec-cms#6206)
requirements.txt: 4
[Snyk Medium - django@4.2.10 Regular Expression Denial of Service (ReDoS)] (fecgov/fec-cms#6268)
[Snyk Medium - requests@requests@2.31.0 Always-Incorrect Control Flow Implementation] (fecgov/fec-cms#6285)
[Snyk Medium - jinja2@3.1.3 Cross-site Scripting (XSS)] (fecgov/fec-cms#6250)
[Snyk Medium - setuptools@65.5.0 Regular Expression Denial of Service (ReDoS)] (fecgov/fec-cms#6269)
Log review needs to be completed per the Security Event Review Checklist (https://github.com/fecgov/FEC/wiki/Security-Event-Review-Checklist)
Ref: #5820
(Note: Copy above links in a browser to view the metrics)
The text was updated successfully, but these errors were encountered: