Skip to content

Pull requests: DevSecCube/damn-vulnerable-sca

New pull request New
29 Open 18 Closed
29 Open 18 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Bump org.springframework.boot:spring-boot-starter-parent from 2.1.13.RELEASE to 4.0.0 in /backend dependencies Pull requests that update a dependency file java Pull requests that update java code
#47 opened Nov 21, 2025 by dependabot Bot Loading…
Bump org.tukaani:xz from 1.9 to 1.11 in /xz-java-malicious dependencies Pull requests that update a dependency file java Pull requests that update java code
#46 opened Nov 20, 2025 by dependabot Bot Loading…
Bump org.tukaani:xz from 1.9.2-malicious to 1.11 in /backend dependencies Pull requests that update a dependency file java Pull requests that update java code
#45 opened Nov 20, 2025 by dependabot Bot Loading…
Bump com.fasterxml.jackson.dataformat:jackson-dataformat-yaml from 2.9.10 to 2.20.1 in /backend dependencies Pull requests that update a dependency file java Pull requests that update java code
#44 opened Oct 31, 2025 by dependabot Bot Loading…
Bump marked from 0.3.5 to 16.4.1 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#42 opened Oct 17, 2025 by dependabot Bot Loading…
Bump the npm_and_yarn group across 1 directory with 10 updates dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#40 opened Sep 30, 2025 by dependabot Bot Loading…
Bump org.apache.maven.plugins:maven-compiler-plugin from 3.1 to 3.14.1 in /xz-java-malicious dependencies Pull requests that update a dependency file java Pull requests that update java code
#39 opened Sep 22, 2025 by dependabot Bot Loading…
Bump ws from 6.2.1 to 8.18.3 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#31 opened Aug 16, 2025 by dependabot Bot Loading…
Bump send and express dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#30 opened Aug 16, 2025 by dependabot Bot Loading…
Bump serve-static and express dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#28 opened Aug 16, 2025 by dependabot Bot Loading…
Bump path-to-regexp and express dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#27 opened Aug 16, 2025 by dependabot Bot Loading…
Bump pug-code-gen and pug dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#26 opened Aug 16, 2025 by dependabot Bot Loading…
Bump body-parser and express dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#25 opened Aug 16, 2025 by dependabot Bot Loading…
Bump cookie and express dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#23 opened Aug 16, 2025 by dependabot Bot Loading…
Bump brace-expansion from 1.1.11 to 1.1.12 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#22 opened Aug 16, 2025 by dependabot Bot Loading…
Bump body-parser from 1.20.2 to 2.2.0 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#20 opened Aug 16, 2025 by dependabot Bot Loading…
Bump web-streams-polyfill from 3.3.2 to 3.3.3 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#19 opened Aug 16, 2025 by dependabot Bot Loading…
Bump psl from 1.9.0 to 1.15.0 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#16 opened Aug 16, 2025 by dependabot Bot Loading…
Bump com.unboundid:unboundid-ldapsdk from 3.1.1 to 7.0.3 in /backend dependencies Pull requests that update a dependency file java Pull requests that update java code
#15 opened Aug 16, 2025 by dependabot Bot Loading…
Bump br.com.anteros:Anteros-Core from 1.1.9 to 1.3.6 in /backend dependencies Pull requests that update a dependency file java Pull requests that update java code
#11 opened Aug 16, 2025 by dependabot Bot Loading…
Bump binary-extensions from 2.2.0 to 2.3.0 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#10 opened Aug 16, 2025 by dependabot Bot Loading…
Bump touch from 3.1.0 to 3.1.1 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#8 opened Aug 16, 2025 by dependabot Bot Loading…
Bump call-bind from 1.0.6 to 1.0.8 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#7 opened Aug 16, 2025 by dependabot Bot Loading…
Bump handlebars from 4.0.14 to 4.7.8 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#6 opened Aug 16, 2025 by dependabot Bot Loading…
Bump pug from 2.0.4 to 3.0.3 dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code
#5 opened Aug 16, 2025 by dependabot Bot Loading…
ProTip! What’s not been updated in a month: updated:<2026-04-15.