@stordata/vsphere-soapify 1.0.20251113140933 → 1.0.20251203210714
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/gl-sast-report.json +55 -55
- package/gl-sbom-npm-npm.cdx.json +6 -6
- package/package.json +2 -2
package/gl-sast-report.json
CHANGED
|
@@ -1,52 +1,4 @@
|
|
|
1
1
|
{
|
|
2
|
-
"version": "15.2.2",
|
|
3
|
-
"vulnerabilities": [
|
|
4
|
-
{
|
|
5
|
-
"id": "8646136a771899e2fcd1f86f3216f6dd337537c591f09e104b0abd2422ecdd55",
|
|
6
|
-
"category": "sast",
|
|
7
|
-
"name": "Incorrect regular expression",
|
|
8
|
-
"description": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service.\n",
|
|
9
|
-
"cve": "semgrep_id:nodejs_scan.javascript-dos-rule-regex_dos:19:20",
|
|
10
|
-
"severity": "Medium",
|
|
11
|
-
"scanner": {
|
|
12
|
-
"id": "semgrep",
|
|
13
|
-
"name": "Semgrep"
|
|
14
|
-
},
|
|
15
|
-
"location": {
|
|
16
|
-
"file": "lib/parser.js",
|
|
17
|
-
"start_line": 19,
|
|
18
|
-
"end_line": 20
|
|
19
|
-
},
|
|
20
|
-
"identifiers": [
|
|
21
|
-
{
|
|
22
|
-
"type": "semgrep_id",
|
|
23
|
-
"name": "nodejs_scan.javascript-dos-rule-regex_dos",
|
|
24
|
-
"value": "nodejs_scan.javascript-dos-rule-regex_dos"
|
|
25
|
-
},
|
|
26
|
-
{
|
|
27
|
-
"type": "cwe",
|
|
28
|
-
"name": "CWE-185",
|
|
29
|
-
"value": "185",
|
|
30
|
-
"url": "https://cwe.mitre.org/data/definitions/185.html"
|
|
31
|
-
},
|
|
32
|
-
{
|
|
33
|
-
"type": "owasp",
|
|
34
|
-
"name": "A05:2021 - Security Misconfiguration",
|
|
35
|
-
"value": "A05:2021"
|
|
36
|
-
},
|
|
37
|
-
{
|
|
38
|
-
"type": "owasp",
|
|
39
|
-
"name": "A6:2017 - Security Misconfiguration",
|
|
40
|
-
"value": "A6:2017"
|
|
41
|
-
},
|
|
42
|
-
{
|
|
43
|
-
"type": "njsscan_rule_type",
|
|
44
|
-
"name": "NodeJS Scan ID javascript-dos-rule-regex_dos",
|
|
45
|
-
"value": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service."
|
|
46
|
-
}
|
|
47
|
-
]
|
|
48
|
-
}
|
|
49
|
-
],
|
|
50
2
|
"scan": {
|
|
51
3
|
"analyzer": {
|
|
52
4
|
"id": "semgrep",
|
|
@@ -55,7 +7,7 @@
|
|
|
55
7
|
"vendor": {
|
|
56
8
|
"name": "GitLab"
|
|
57
9
|
},
|
|
58
|
-
"version": "6.
|
|
10
|
+
"version": "6.13.0"
|
|
59
11
|
},
|
|
60
12
|
"scanner": {
|
|
61
13
|
"id": "semgrep",
|
|
@@ -64,7 +16,7 @@
|
|
|
64
16
|
"vendor": {
|
|
65
17
|
"name": "GitLab"
|
|
66
18
|
},
|
|
67
|
-
"version": "1.
|
|
19
|
+
"version": "1.143.0"
|
|
68
20
|
},
|
|
69
21
|
"primary_identifiers": [
|
|
70
22
|
{
|
|
@@ -3042,17 +2994,17 @@
|
|
|
3042
2994
|
}
|
|
3043
2995
|
],
|
|
3044
2996
|
"type": "sast",
|
|
3045
|
-
"start_time": "2025-
|
|
3046
|
-
"end_time": "2025-
|
|
2997
|
+
"start_time": "2025-12-03T21:06:38",
|
|
2998
|
+
"end_time": "2025-12-03T21:06:51",
|
|
3047
2999
|
"status": "success",
|
|
3048
3000
|
"observability": {
|
|
3049
3001
|
"events": [
|
|
3050
3002
|
{
|
|
3051
3003
|
"event": "collect_sast_scan_metrics_from_pipeline",
|
|
3052
|
-
"property": "
|
|
3004
|
+
"property": "f4d66682-c163-4233-a772-d8a18a790752",
|
|
3053
3005
|
"label": "semgrep",
|
|
3054
3006
|
"value": 0,
|
|
3055
|
-
"version": "6.
|
|
3007
|
+
"version": "6.13.0",
|
|
3056
3008
|
"exit_code": 0,
|
|
3057
3009
|
"override_count": 0,
|
|
3058
3010
|
"passthrough_count": 0,
|
|
@@ -3062,5 +3014,53 @@
|
|
|
3062
3014
|
}
|
|
3063
3015
|
]
|
|
3064
3016
|
}
|
|
3065
|
-
}
|
|
3017
|
+
},
|
|
3018
|
+
"version": "15.2.2",
|
|
3019
|
+
"vulnerabilities": [
|
|
3020
|
+
{
|
|
3021
|
+
"id": "8646136a771899e2fcd1f86f3216f6dd337537c591f09e104b0abd2422ecdd55",
|
|
3022
|
+
"category": "sast",
|
|
3023
|
+
"name": "Incorrect regular expression",
|
|
3024
|
+
"description": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service.\n",
|
|
3025
|
+
"cve": "semgrep_id:nodejs_scan.javascript-dos-rule-regex_dos:19:20",
|
|
3026
|
+
"severity": "Medium",
|
|
3027
|
+
"scanner": {
|
|
3028
|
+
"id": "semgrep",
|
|
3029
|
+
"name": "Semgrep"
|
|
3030
|
+
},
|
|
3031
|
+
"location": {
|
|
3032
|
+
"file": "lib/parser.js",
|
|
3033
|
+
"start_line": 19,
|
|
3034
|
+
"end_line": 20
|
|
3035
|
+
},
|
|
3036
|
+
"identifiers": [
|
|
3037
|
+
{
|
|
3038
|
+
"type": "semgrep_id",
|
|
3039
|
+
"name": "nodejs_scan.javascript-dos-rule-regex_dos",
|
|
3040
|
+
"value": "nodejs_scan.javascript-dos-rule-regex_dos"
|
|
3041
|
+
},
|
|
3042
|
+
{
|
|
3043
|
+
"type": "cwe",
|
|
3044
|
+
"name": "CWE-185",
|
|
3045
|
+
"value": "185",
|
|
3046
|
+
"url": "https://cwe.mitre.org/data/definitions/185.html"
|
|
3047
|
+
},
|
|
3048
|
+
{
|
|
3049
|
+
"type": "owasp",
|
|
3050
|
+
"name": "A05:2021 - Security Misconfiguration",
|
|
3051
|
+
"value": "A05:2021"
|
|
3052
|
+
},
|
|
3053
|
+
{
|
|
3054
|
+
"type": "owasp",
|
|
3055
|
+
"name": "A6:2017 - Security Misconfiguration",
|
|
3056
|
+
"value": "A6:2017"
|
|
3057
|
+
},
|
|
3058
|
+
{
|
|
3059
|
+
"type": "njsscan_rule_type",
|
|
3060
|
+
"name": "NodeJS Scan ID javascript-dos-rule-regex_dos",
|
|
3061
|
+
"value": "Ensure that the regex used to compare with user supplied input is safe from regular expression denial of service."
|
|
3062
|
+
}
|
|
3063
|
+
]
|
|
3064
|
+
}
|
|
3065
|
+
]
|
|
3066
3066
|
}
|
package/gl-sbom-npm-npm.cdx.json
CHANGED
|
@@ -1,15 +1,15 @@
|
|
|
1
1
|
{
|
|
2
2
|
"bomFormat": "CycloneDX",
|
|
3
3
|
"specVersion": "1.4",
|
|
4
|
-
"serialNumber": "urn:uuid:
|
|
4
|
+
"serialNumber": "urn:uuid:cdfe7d6a-a09e-4cbf-9d93-887fca630b8d",
|
|
5
5
|
"version": 1,
|
|
6
6
|
"metadata": {
|
|
7
|
-
"timestamp": "2025-
|
|
7
|
+
"timestamp": "2025-12-03T21:07:03Z",
|
|
8
8
|
"tools": [
|
|
9
9
|
{
|
|
10
10
|
"vendor": "GitLab",
|
|
11
11
|
"name": "Gemnasium",
|
|
12
|
-
"version": "6.
|
|
12
|
+
"version": "6.6.0"
|
|
13
13
|
}
|
|
14
14
|
],
|
|
15
15
|
"authors": [
|
|
@@ -1856,10 +1856,10 @@
|
|
|
1856
1856
|
},
|
|
1857
1857
|
{
|
|
1858
1858
|
"name": "soap",
|
|
1859
|
-
"version": "1.6.
|
|
1860
|
-
"purl": "pkg:npm/soap@1.6.
|
|
1859
|
+
"version": "1.6.1",
|
|
1860
|
+
"purl": "pkg:npm/soap@1.6.1",
|
|
1861
1861
|
"type": "library",
|
|
1862
|
-
"bom-ref": "pkg:npm/soap@1.6.
|
|
1862
|
+
"bom-ref": "pkg:npm/soap@1.6.1"
|
|
1863
1863
|
},
|
|
1864
1864
|
{
|
|
1865
1865
|
"name": "string-width",
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@stordata/vsphere-soapify",
|
|
3
|
-
"version":"1.0.
|
|
3
|
+
"version":"1.0.20251203210714",
|
|
4
4
|
"description": "A NodeJS abstraction layer for the vSphere SOAP API",
|
|
5
5
|
"main": "index.js",
|
|
6
6
|
"scripts": {
|
|
@@ -30,7 +30,7 @@
|
|
|
30
30
|
"axios": "1.13.2",
|
|
31
31
|
"debug": "4.4.3",
|
|
32
32
|
"lodash": "4.17.21",
|
|
33
|
-
"soap": "1.6.
|
|
33
|
+
"soap": "1.6.1",
|
|
34
34
|
"tough-cookie": "6.0.0"
|
|
35
35
|
},
|
|
36
36
|
"devDependencies": {
|