-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathscan.log
More file actions
104 lines (87 loc) · 8.16 KB
/
Copy pathscan.log
File metadata and controls
104 lines (87 loc) · 8.16 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
ζ make build && ./code-remediate --source=github --org=afterpaytouch scan
🔨 Building code-remediate...
✅ Build complete: ./code-remediate
{"level":"info","ts":1765178033.488266,"caller":"code-remediate/main.go:184","msg":"Starting vulnerability scan","source":"github","org":"afterpaytouch"}
{"level":"info","ts":1765178033.488582,"caller":"code-remediate/main.go:195","msg":"Loaded packages from config","count":4,"packages":["aws-advanced-jdbc-wrapper","aws-advanced-go-wrapper","aws-advanced-nodejs-wrapper","aws-advanced-python-wrapper"]}
{"level":"info","ts":1765178033.549025,"caller":"code-remediate/main.go:211","msg":"Scanning for vulnerabilities..."}
{"level":"info","ts":1765178033.5490801,"caller":"github/github.go:66","msg":"Searching for package","current":1,"total":4,"package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178035.082023,"caller":"github/github.go:66","msg":"Searching for package","current":2,"total":4,"package":"aws-advanced-go-wrapper"}
{"level":"info","ts":1765178036.61356,"caller":"github/github.go:66","msg":"Searching for package","current":3,"total":4,"package":"aws-advanced-nodejs-wrapper"}
{"level":"info","ts":1765178038.1998909,"caller":"github/github.go:66","msg":"Searching for package","current":4,"total":4,"package":"aws-advanced-python-wrapper"}
{"level":"info","ts":1765178038.712366,"caller":"analyzer/analyzer.go:47","msg":"Starting vulnerability analysis","files":10}
{"level":"info","ts":1765178038.712522,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":1,"total":10,"repo":"AfterpayTouch/merchant-payment-service","file":"buildSrc/src/main/kotlin/Libraries.kt"}
{"level":"warn","ts":1765178039.315283,"caller":"analyzer/analyzer.go:125","msg":"No versions found","file":"buildSrc/src/main/kotlin/Libraries.kt","package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178039.3153641,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":2,"total":10,"repo":"AfterpayTouch/paynow-tokeniser","file":"tokeniser/tokeniser.gradle.kts"}
{"level":"warn","ts":1765178039.919756,"caller":"analyzer/analyzer.go:151","msg":"Vulnerable versions found","file":"tokeniser/tokeniser.gradle.kts","versions":["2.3.9","1.18.30"]}
{"level":"info","ts":1765178039.91987,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":3,"total":10,"repo":"AfterpayTouch/health-merchant-api","file":"build.gradle.kts"}
{"level":"warn","ts":1765178040.494389,"caller":"analyzer/analyzer.go:125","msg":"No versions found","file":"build.gradle.kts","package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178040.4945438,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":4,"total":10,"repo":"AfterpayTouch/paynow-risk-rule-engine","file":"rule-engine/pom.xml"}
{"level":"warn","ts":1765178041.123646,"caller":"analyzer/analyzer.go:151","msg":"Vulnerable versions found","file":"rule-engine/pom.xml","versions":["2.6.3"]}
{"level":"info","ts":1765178041.123703,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":5,"total":10,"repo":"AfterpayTouch/paynow-risk-analysis","file":"risk-analysis/build.gradle.kts"}
{"level":"info","ts":1765178041.817267,"caller":"analyzer/analyzer.go:157","msg":"All versions safe","file":"risk-analysis/build.gradle.kts","versions":["6.5.3"]}
{"level":"info","ts":1765178041.817664,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":6,"total":10,"repo":"AfterpayTouch/healthclaims","file":"healthclaims/build.gradle.kts"}
{"level":"info","ts":1765178042.4284532,"caller":"analyzer/analyzer.go:157","msg":"All versions safe","file":"healthclaims/build.gradle.kts","versions":["4.0.3","5.6.10"]}
{"level":"info","ts":1765178042.42857,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":7,"total":10,"repo":"AfterpayTouch/payments-processor","file":"buildSrc/src/main/kotlin/Libraries.kt"}
{"level":"warn","ts":1765178042.957212,"caller":"analyzer/analyzer.go:125","msg":"No versions found","file":"buildSrc/src/main/kotlin/Libraries.kt","package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178042.957335,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":8,"total":10,"repo":"AfterpayTouch/healthclaims","file":"health-core/build.gradle.kts"}
{"level":"warn","ts":1765178043.5666728,"caller":"analyzer/analyzer.go:125","msg":"No versions found","file":"health-core/build.gradle.kts","package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178043.566771,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":9,"total":10,"repo":"AfterpayTouch/healthclaims","file":"health-ors/build.gradle.kts"}
{"level":"warn","ts":1765178044.54917,"caller":"analyzer/analyzer.go:151","msg":"Vulnerable versions found","file":"health-ors/build.gradle.kts","versions":["2.0.1"]}
{"level":"info","ts":1765178044.549321,"caller":"analyzer/analyzer.go:52","msg":"Analyzing file","current":10,"total":10,"repo":"AfterpayTouch/payments-merchant-service","file":"buildSrc/src/main/kotlin/Libraries.kt"}
{"level":"warn","ts":1765178045.107121,"caller":"analyzer/analyzer.go:125","msg":"No versions found","file":"buildSrc/src/main/kotlin/Libraries.kt","package":"aws-advanced-jdbc-wrapper"}
{"level":"info","ts":1765178045.107278,"caller":"analyzer/analyzer.go:62","msg":"Analysis complete","results":10}
====================================================================================================
VULNERABILITY SCAN REPORT
====================================================================================================
Organization: github
Scan Date: 2025-12-08 18:14:05
Total Files Scanned: 10
• Vulnerable: 3
• Safe: 2
• Unknown: 5
• Errors: 0
----------------------------------------------------------------------------------------------------
RESULTS BY REPOSITORY
----------------------------------------------------------------------------------------------------
AfterpayTouch/health-merchant-api
Total Files: 1 | Vulnerable: 0 | Safe: 0 | Unknown: 1
AfterpayTouch/paynow-risk-rule-engine
Total Files: 1 | Vulnerable: 1 | Safe: 0 | Unknown: 0 | Safe versions also found: 1
AfterpayTouch/paynow-risk-analysis
Total Files: 1 | Vulnerable: 0 | Safe: 1 | Unknown: 0 | Safe versions also found: 1
AfterpayTouch/healthclaims
Total Files: 3 | Vulnerable: 1 | Safe: 1 | Unknown: 1 | Safe versions also found: 1
AfterpayTouch/payments-processor
Total Files: 1 | Vulnerable: 0 | Safe: 0 | Unknown: 1
AfterpayTouch/payments-merchant-service
Total Files: 1 | Vulnerable: 0 | Safe: 0 | Unknown: 1
AfterpayTouch/merchant-payment-service
Total Files: 1 | Vulnerable: 0 | Safe: 0 | Unknown: 1
AfterpayTouch/paynow-tokeniser
Total Files: 1 | Vulnerable: 1 | Safe: 0 | Unknown: 0 | Safe versions also found: 1
----------------------------------------------------------------------------------------------------
VULNERABLE FILES
----------------------------------------------------------------------------------------------------
📁 tokeniser/tokeniser.gradle.kts
Repository: AfterpayTouch/paynow-tokeniser
Package: aws-advanced-jdbc-wrapper
Vulnerable Versions: 2.3.9, 1.18.30
Required Safe Version: 2.6.5
Safe Versions Also Found: 3.2.11, 6.2.2, 8.2.0
URL: https://github.com/AfterpayTouch/paynow-tokeniser/blob/c23e3f3fe3dae22c84475e3ebdaa20afdadb99f9/tokeniser/tokeniser.gradle.kts
📁 rule-engine/pom.xml
Repository: AfterpayTouch/paynow-risk-rule-engine
Package: aws-advanced-jdbc-wrapper
Vulnerable Versions: 2.6.3
Required Safe Version: 2.6.5
Safe Versions Also Found: 4.0.0, 25.10.03, 3.20.1, 10.1.0, 3.39.1, 9.4.0, 3.12.4, 4.1.126, 23.0.1, 3.10.1, 3.6.0, 3.1.1
URL: https://github.com/AfterpayTouch/paynow-risk-rule-engine/blob/59629d62c2039b2820028b76c8c9dad78e8c4738/rule-engine/pom.xml
📁 health-ors/build.gradle.kts
Repository: AfterpayTouch/healthclaims
Package: aws-advanced-jdbc-wrapper
Vulnerable Versions: 2.0.1
Required Safe Version: 2.6.5
URL: https://github.com/AfterpayTouch/healthclaims/blob/1226540dcdfb1fb27f7fcdab8f83292d09576b81/health-ors/build.gradle.kts
====================================================================================================
Scan complete. Found 3 vulnerable file(s).
====================================================================================================