feat: production-ready platform — lakehouse, ML/DL/GNN, simulation engines, middleware integration#19
32 new alerts including 2 critical severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 2 critical
- 13 high
- 11 medium
- 6 low
Alerts not introduced by this pull request might have been detected because the code changes were too large.
See annotations below for details.
Annotations
Check failure on line 2379 in workers/rust/Cargo.lock
Code scanning / Trivy
rustls-webpki: Denial of service via panic on malformed CRL BIT STRING High
Check failure on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl: rust-openssl: Arbitrary code execution via specially crafted certificate High
Check failure on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl provides OpenSSL bindings for the Rust programming langua ... High
Check failure on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl provides OpenSSL bindings for the Rust programming langua ... High
Check failure on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl provides OpenSSL bindings for the Rust programming langua ... High
Check failure on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl provides OpenSSL bindings for the Rust programming langua ... High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
tmp is a temporary file and directory creator for node.js. Prior to 0. ... High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality High
Check failure on line 1 in pnpm-lock.yaml
Code scanning / Trivy
uuid: uuid: Out-of-bounds write vulnerability impacts data integrity and confidentiality High
Check failure on line 1 in orchestration/go/go.mod
Code scanning / Trivy
google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation Critical
Check failure on line 26 in certs/ndsep-signing.key
Code scanning / Trivy
Asymmetric Private Key High
Check failure on line 27 in infra/nginx/ssl/privkey.pem
Code scanning / Trivy
Asymmetric Private Key High
Check failure on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang-jwt/jwt: jwt-go allows excessive memory allocation during header parsing High
Check failure on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/crypto/ssh: Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto Critical
Check failure on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh High
Check warning on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/net/html: Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net Medium
Check warning on line 2379 in workers/rust/Cargo.lock
Code scanning / Trivy
webpki: CRLs not considered authoritative by Distribution Point due to faulty matching logic Medium
Check warning on line 2052 in workers/rust/Cargo.lock
Code scanning / Trivy
protobuf: Protobuf: Uncontrolled Recursion Vulnerability Medium
Check warning on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl: Potential out-of-bounds write in `CipherCtxRef::cipher_update_inplace` for AES-KW-PAD ciphers Medium
Check warning on line 1718 in workers/rust/Cargo.lock
Code scanning / Trivy
rust-openssl provides OpenSSL bindings for the Rust programming langua ... Medium
Check warning on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/net/proxy: golang.org/x/net/http/httpproxy: HTTP Proxy bypass using IPv6 Zone IDs in golang.org/x/net Medium
Check warning on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS Medium
Check warning on line 1 in pnpm-lock.yaml
Code scanning / Trivy
### Summary `qs.stringify` throws `TypeError` when called with `arr ... Medium
Check warning on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/crypto/ssh: golang.org/x/crypto/ssh: Denial of Service via unbounded memory consumption in GSSAPI authentication Medium
Check warning on line 1 in orchestration/go/go.mod
Code scanning / Trivy
golang.org/x/crypto/ssh/agent: SSH Agent servers: Denial of Service due to malformed messages Medium