Skip to content

Main to Staging #2479

Open
cs-raj wants to merge 3 commits intostagingfrom
main
Open

Main to Staging #2479
cs-raj wants to merge 3 commits intostagingfrom
main

Conversation

@cs-raj
Copy link
Contributor

@cs-raj cs-raj commented Mar 20, 2026

No description provided.

@cs-raj cs-raj requested a review from a team as a code owner March 20, 2026 07:53
@github-actions
Copy link

github-actions bot commented Mar 20, 2026

🔒 Security Scan Results

ℹ️ Note: Only vulnerabilities with available fixes (upgrades or patches) are counted toward thresholds.

Check Type Count (with fixes) Without fixes Threshold Result
🔴 Critical Severity 0 0 10 ✅ Passed
🟠 High Severity 156 329 25 ❌ Failed
🟡 Medium Severity 77 231 500 ✅ Passed
🔵 Low Severity 0 0 1000 ✅ Passed

⏱️ SLA Breach Summary

⚠️ Warning: The following vulnerabilities have exceeded their SLA thresholds (days since publication).

Severity Breaches (with fixes) Breaches (no fixes) SLA Threshold (with/no fixes) Status
🔴 Critical 0 0 15 / 30 days ✅ Passed
🟠 High 24 44 30 / 120 days ❌ Failed / ⚠️ Warning
🟡 Medium 0 11 90 / 365 days ⚠️ Warning
🔵 Low 0 0 180 / 365 days ✅ Passed

🟠 High Severity - SLA Breached Issues (with fixes)

Showing 20 issue(s) that have exceeded the 30-day SLA threshold:

  1. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@7.4.3
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  2. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@7.4.3
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  3. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@7.4.3
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  4. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@7.4.3
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  5. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@6.2.1
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  6. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@6.2.1
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  7. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@6.2.1
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  8. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@6.2.1
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  9. Directory Traversal

    • ID: SNYK-JS-TAR-15307072
    • Package: tar@6.2.1
    • Published: 30 days ago (SLA: 30 days)
    • CVSS Score: 8.4
    • CVE: CVE-2026-26960

  10. Directory Traversal

  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@7.4.3
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@7.4.3
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@6.2.1
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@7.4.3
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960
  1. Directory Traversal
  • ID: SNYK-JS-TAR-15307072
  • Package: tar@7.4.3
  • Published: 30 days ago (SLA: 30 days)
  • CVSS Score: 8.4
  • CVE: CVE-2026-26960

ℹ️ Vulnerabilities Without Available Fixes (Informational Only)

The following vulnerabilities were detected but do not have fixes available (no upgrade or patch). These are excluded from failure thresholds:

  • Critical without fixes: 0
  • High without fixes: 329
  • Medium without fixes: 231
  • Low without fixes: 0

❌ BUILD FAILED - Security checks failed

Please review and fix the security vulnerabilities before merging.

@cs-raj cs-raj requested a review from aman19K March 20, 2026 07:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aman19K aman19K aman19K approved these changes

@naman-contentstack naman-contentstack naman-contentstack approved these changes

@harshitha-cstk harshitha-cstk harshitha-cstk approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@cs-raj @aman19K @naman-contentstack @harshitha-cstk @harshithad0703 @dhavaljain999