merged main

Author: kendrickcurtis

.circleci/config.yml

@@ -9,7 +9,7 @@ references:
     persist_to_workspace: true
     # https://aquasecurity.github.io/trivy/v0.65/getting-started/installation/#install-script
     cmd: |
-      curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b . v0.65.0
+      curl -sfL https://raw.githubusercontent.com/aquasecurity/trivy/main/contrib/install.sh | sh -s -- -b . v0.66.0
       mkdir cache
       ./trivy --cache-dir ./cache image --download-db-only
       # Download OpenSSF malicious packages database
@@ -23,7 +23,7 @@ references:
   build_and_publish_docker: &build_and_publish_docker
     persist_to_workspace: true
     cmd: |
-      docker build --no-cache -t $CIRCLE_PROJECT_REPONAME:latest --build-arg TRIVY_VERSION=0.65.0 .
+      docker build --no-cache -t $CIRCLE_PROJECT_REPONAME:latest --build-arg TRIVY_VERSION=0.66.0 .
       docker save --output docker-image.tar $CIRCLE_PROJECT_REPONAME:latest
 
 workflows:

docs/multiple-tests/all-patterns/patterns.xml

@@ -1,7 +1,6 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <module name="root">
     <module name="secret" />
-    <module name="vulnerability" />
     <module name="vulnerability_critical" />
     <module name="vulnerability_high" />
     <module name="vulnerability_medium" />

docs/multiple-tests/all-patterns/results.xml

@@ -22,16 +22,16 @@
             severity="warning"
         />
         <error
-            source="vulnerability"
+            source="vulnerability_critical"
             line="2"
             message="Insecure dependency maven/org.apache.dolphinscheduler/[email protected] (CVE-2024-43202: Apache Dolphinscheduler Code Injection vulnerability) (update to 3.2.2)"
             severity="error"
         />
         <error
-            source="vulnerability"
+            source="vulnerability_high"
             line="3"
             message="Insecure dependency maven/org.apache.seatunnel/[email protected] (CVE-2023-49198: Apache SeaTunnel SQL Injection vulnerability) (update to 1.0.1)"
-            severity="error"
+            severity="high"
         />
         <error
             source="vulnerability_medium"

docs/multiple-tests/all-patterns/src/gradle/gradle.lockfile

@@ -1,5 +1,4 @@
 org.apache.logging.log4j:log4j-core:2.17.0
 org.apache.dolphinscheduler:dolphinscheduler-task-api:3.2.1
 org.apache.seatunnel:seatunnel:1.0.0
-org.apache.cxf:cxf-rt-transports-http:4.0.0
-npm:commitlint-pm2-proxima-dotenv-safe:1.0.0
+org.apache.cxf:cxf-rt-transports-http:4.0.0