libre.sh/keycloak-scim
3
0
Fork 0
Code Issues 15 Pull requests Releases Packages Activity Actions

False alert - Arbitrary Code Execution vulnerability in org.keycloak:keycloak-saml-core

Browse source 
Resolves #14639
This commit is contained in:
Bruno Oliveira da Silva 2022-09-28 12:20:26 -03:00
parent 20fa75f677
commit db34e9e2ce
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
.github/snyk/.snyk vendored
View file

@ -51,7 +51,14 @@ ignore:
Keycloak is no longer vulnerable. The issue was fixed on Keycloak 18.0.0
More details:
- https://github.com/keycloak/keycloak/security/advisories/GHSA-mwm4-5qwr-g9pf
- https://access.redhat.com/security/cve/cve-2021-3424
- https://access.redhat.com/security/cve/cve-2021-3424
SNYK-JAVA-ORGKEYCLOAK-2987457:
- "*":
reason: >
Keycloak is no longer vulnerable. The issue was fixed on Keycloak 19.0.2
More details:
- https://github.com/keycloak/keycloak/security/advisories/GHSA-wf7g-7h6h-678v
- https://access.redhat.com/security/cve/CVE-2022-2668
# License warnings
snyk:lic:maven:org.eclipse.sisu:org.eclipse.sisu.plexus:EPL-1.0:
- "*":