Update dd-trace-go.v1 (#1332)
Mend for github.com / WhiteSource Security Check
succeeded
Jan 4, 2024 in 57s
Security Report
| CVE | Severity |  CVSS Score |
Vulnerable Library | Suggested Fix | Issue |
|---|---|---|---|---|---|
CVE-2019-0210Path to dependency file: /contrib/tally/go.mod Path to vulnerable library: /go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod,/go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod Dependency Hierarchy: -> ❌ github.com/uber-go/tally/v4-v4.1.1 (Vulnerable Library) |
 High |
7.5 | github.com/uber-go/tally/v4-v4.1.1 | Upgrade to version: 0.13.0 | #899 |
CVE-2019-0205Path to dependency file: /contrib/tally/go.mod Path to vulnerable library: /go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod,/go/pkg/mod/cache/download/github.com/uber-go/tally/v4/@v/v4.1.1.mod Dependency Hierarchy: -> ❌ github.com/uber-go/tally/v4-v4.1.1 (Vulnerable Library) |
High |
7.5 | github.com/uber-go/tally/v4-v4.1.1 | Upgrade to version: org.apache.thrift:libthrift:0.13.0 | #899 |
Total libraries scanned: 63
Scan token: f59581b8d84c413c99bae4685175764a
Loading