Bump google.golang.org/protobuf from 1.32.0 to 1.33.0 #72
Annotations
1 error, 6 warnings, and 2 notices
Vulnerable declared dependency:
go.mod#L29
Dependency go:golang.org/x/crypto:v0.17.0 is vulnerable, safe version v0.21.0
* [CVE-2023-42818](https://devhub.checkmarx.com/cve-details/CVE-2023-42818?utm_source=jetbrains&utm_medium=referral) 9.8 Improper Restriction of Excessive Authentication Attempts vulnerability with High severity found
Results powered by [Checkmarx](https://checkmarx.com)(c)
|
Missing 'case' statements for 'iota' consts in 'switch':
pkg/services/job/job.go#L813
Missing 'case' statements for 'iota' consts in 'switch'
|
Unused parameter:
pkg/transformer/encoders/gob/gob.go#L55
Unused parameter `key`
|
Unused parameter:
pkg/transformer/encoders/hex/hex.go#L58
Unused parameter `key`
|
Unused parameter:
pkg/authenticators/none/none.go#L56
Unused parameter `data`
|
Unused parameter:
pkg/transformer/encoders/base64/base64.go#L56
Unused parameter `key`
|
Qodana Job
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@v3, JetBrains/qodana-action@v2023.3. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
|
Direct comparison of errors:
pkg/servers/http/http.go#L367
Comparison with errors using equality operators fails on wrapped errors
|
Direct comparison of errors:
pkg/servers/http/http.go#L367
Comparison with errors using equality operators fails on wrapped errors
|