Skip to content

Staging#118

Open
Amitkanswal wants to merge 10 commits intomasterfrom
staging
Open

Staging#118
Amitkanswal wants to merge 10 commits intomasterfrom
staging

Conversation

@Amitkanswal
Copy link
Copy Markdown
Contributor

@Amitkanswal Amitkanswal commented Mar 31, 2026

Changes-

  • Fix for LP
  • snyk fixes

malewis5 and others added 10 commits December 12, 2025 13:12
@malewis5
fix: Fix React Server Components CVE vulnerabilities
8a23323 
Updated dependencies to fix Next.js and React CVE vulnerabilities.

The fix-react2shell-next tool automatically updated the following packages to their secure versions:
- next
- react-server-dom-webpack
- react-server-dom-parcel
- react-server-dom-turbopack

All package.json files have been scanned and vulnerable versions have been patched to the correct fixed versions based on the official React advisory.
@Amitkanswal
Merge pull request #115 from malewis5/fix/cve-2025-66478
0f3bcbb 
fix: Fix React Server Components CVE vulnerabilities
@Amitkanswal
fix:audit-fix
faf695f
@Amitkanswal
update license file
0862f33
@Amitkanswal
Merge branch 'staging' into fix/MKT-17450-audit-fix
3893028
@Amitkanswal
eslint issue fix
9930ed4
@Amitkanswal
updated gitignore
023f5ff
@Amitkanswal
fix:lp issue and env fix
c609b12
@Amitkanswal
fix:snyk issues
9c69900
@Amitkanswal
Merge pull request #117 from contentstack/fix/MKT-17450-audit-fix
ae78835 
Fix/mkt 17450 audit fix
@Amitkanswal Amitkanswal requested a review from a team as a code owner March 31, 2026 17:29
@github-actions
Copy link
Copy Markdown

github-actions bot commented Mar 31, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 0 0 25 ✅ Passed
🟡 Medium Severity 0 22 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 0 0 30 / 120 days ✅ Passed
🟡 Medium 0 20 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 0
  • Medium without fixes: 22
  • Low without fixes: 0

⚠️ BUILD PASSED WITH WARNINGS - SLA breaches detected for issues without available fixes

Consider reviewing these vulnerabilities when fixes become available.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@Amitkanswal @malewis5