{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":9680727,"defaultBranch":"master","name":"SolrTextTagger","ownerLogin":"OpenSextant","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2013-04-25T20:31:25.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/4237411?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1623085478.8321412","currentOid":""},"activityList":{"items":[{"before":"39760e9a3a09a7782210b36d8c5c58a410b7e78e","after":"5683091a7e4d071d8805163189aad24cc04c1baa","ref":"refs/heads/master","pushedAt":"2023-12-18T03:25:12.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"dsmiley","name":"David Smiley","path":"/dsmiley","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/377295?s=80&v=4"},"commit":{"message":"pom.xml: use HTTPS instead of HTTP to resolve deps (#96)\n\nThis fixes a security vulnerability in this project where the `pom.xml`\r\nfiles were configuring Maven to resolve dependencies over HTTP instead of\r\nHTTPS.\r\n\r\nWeakness: CWE-829: Inclusion of Functionality from Untrusted Control Sphere\r\nSeverity: High\r\nCVSS: 8.1\r\nDetection: CodeQL & OpenRewrite (https://app.moderne.io/recipes/org.openrewrite.maven.security.UseHttpsForRepositories)\r\n\r\nReported-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>\r\n\r\n\r\nBug-tracker: https://github.com/JLLeitschuh/security-research/issues/8\r\nDetection: CodeQL (https://codeql.github.com/codeql-query-help/java/java-maven-non-https-url/) & OpenRewrite (https://app.moderne.io/recipes/org.openrewrite.maven.security.UseHttpsForRepositories)\r\n\r\nReported-by: Jonathan Leitschuh <Jonathan.Leitschuh@gmail.com>\r\n\r\n\r\nBug-tracker: https://github.com/JLLeitschuh/security-research/issues/8\r\n\r\n\r\nUse this link to re-run the recipe: https://app.moderne.io/recipes/builder/IfHkrYfxx?organizationId=QWxsIEdpdEh1Yg%3D%3D\r\n\r\nCo-authored-by: Moderne <team@moderne.io>","shortMessageHtmlLink":"pom.xml: use HTTPS instead of HTTP to resolve deps (<a class=\"issue-link js-issue-link\" data-error-text=\"Failed to load title\" data-id=\"2045039195\" data-permission-text=\"Title is private\" data-url=\"https://github.com/OpenSextant/SolrTextTagger/issues/96\" data-hovercard-type=\"pull_request\" data-hovercard-url=\"/OpenSextant/SolrTextTagger/pull/96/hovercard\" href=\"https://github.com/OpenSextant/SolrTextTagger/pull/96\">#96</a>)"}}],"hasNextPage":false,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"cursor":"djE6ks8AAAADzIc6DAA","startCursor":null,"endCursor":null}},"title":"Activity · OpenSextant/SolrTextTagger"}