Dependency review detected vulnerable packages.

Submitting snapshot...

{ "manifests": { "guava-parent": { "resolved": { "pkg:maven/com.google.guava/failureaccess@1.0.2?type=jar": { "package_url": "pkg:maven/com.google.guava/failureaccess@1.0.2?type=jar", "relationship": "direct", "scope": "development", "dependencies": [] }, "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar": { "package_url": "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar", "relationship": "direct", "scope": "development", "dependencies": [] }, "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar": { "package_url": "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar", "relationship": "direct", "scope": "runtime", "dependencies": [] }, "pkg:maven/org.checkerframework/checker-qual@3.42.0?type=jar": { "package_url": "pkg:maven/org.checkerframework/checker-qual@3.42.0?type=jar", "relationship": "direct", "scope": "runtime", "dependencies": [] }, "pkg:maven/com.google.errorprone/error_prone_annotations@2.24.1?type=jar": { "package_url": "pkg:maven/com.google.errorprone/error_prone_annotations@2.24.1?type=jar", "relationship": "direct", "scope": "runtime", "dependencies": [] }, "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar": { "package_url": "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar", "relationship": "direct", "scope": "development", "dependencies": [] }, "pkg:maven/com.google.guava/guava@HEAD-jre-SNAPSHOT?type=jar": { "package_url": "pkg:maven/com.google.guava/guava@HEAD-jre-SNAPSHOT?type=jar", "relationship": "direct", "scope": "development", "dependencies": [ "pkg:maven/com.google.guava/failureaccess@1.0.2?type=jar", "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar", "pkg:maven/com.google.code.findbugs/jsr305@3.0.2?type=jar", "pkg:maven/com.google.errorprone/error_prone_annotations@2.24.1?type=jar", "pkg:maven/com.google.j2objc/j2objc-annotations@2.8?type=jar", "pkg:maven/com.google.guava/failureaccess@1.0.2?type=jar", "pkg:maven/com.google.guava/listenablefuture@9999.0-empty-to-avoid-conflict-with-guava?type=jar" ] }, "pkg:maven/junit/junit@4.13.2?type=jar": { "package_url": "pkg:maven/junit/junit@4.13.2?type=jar", "relationship": "direct", "scope": "development", "dependencies": [ "pkg:maven/org.hamcrest/hamcrest-core@1.3?type=jar", "pkg:maven/org.hamcrest/hamcrest-core@1.3?type=jar" ] }, "pkg:maven/org.hamcrest/hamcrest-core@1.3?type=jar": { "package_url": "pkg:maven/org.hamcrest/hamcrest-core@1.3?type=jar", "relationship": "indirect", "scope": "development", "dependencies": [] }, "pkg:maven/com.google.truth/truth@1.4.2?type=jar": { "package_url": "pkg:maven/com.google.truth/truth@1.4.2?type=jar", "relationship": "direct",

Snapshot successfully created at 2024-03-08T18:49:00.608Z

Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: slsa-framework/slsa-github-generator/.github/actions/detect-workflow-js@v1.9.0. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.

Restore cache failed: Dependencies file is not found in /home/runner/work/guava/guava. Supported file pattern: go.sum

Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: actions/checkout@c85c95e3d7251135ab7dc9ce3241c5835cc595a9, ./__BUILDER_CHECKOUT_DIR__/.github/actions/privacy-check, actions/setup-go@fac708d6674e30b6ba41289acaab6d4b75aa0753, ./__BUILDER_CHECKOUT_DIR__/.github/actions/compute-sha256, actions/upload-artifact@0b7f8abb1508181956e8e162db84b466c27e18ce. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.