Increase dependency review severity requirement and work around dataflow test failures · eisop/checker-framework@df893eb

Triggered via pull request August 12, 2024 05:16

synchronize #852

Status Failure

Total duration 10m 44s

Artifacts –

dependency-review.yml

on: pull_request

1 error and 7 warnings

Dependency review detected vulnerable packages.

maven/com.diffplug.durian:durian-collect has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/com.diffplug.durian:durian-core has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/com.diffplug.durian:durian-io has an OpenSSF Scorecard of 2.9, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib-common has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib-jdk7 has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.

maven/org.jetbrains.kotlin:kotlin-stdlib-jdk8 has an OpenSSF Scorecard of 2.4, which is less than this repository's threshold of 3.