Skip to content

NCL-9661 Update release labels#154

Merged
thescouser89 merged 1 commit into
mainfrom
NCL9661
May 15, 2026
Merged

NCL-9661 Update release labels#154
thescouser89 merged 1 commit into
mainfrom
NCL9661

Conversation

@rnc
Copy link
Copy Markdown
Contributor

@rnc rnc commented May 14, 2026

No description provided.

@github-actions
Copy link
Copy Markdown

github-actions Bot commented May 14, 2026

Mend Scan Results

Status: ⚠️ Findings detected

⚠️ SCA findings detected

SCA scan output 
              |                | io.netty:netty-codec-http:4.2.13.Final, https://github.com/netty/netty.git - netty-4.1.133.Final,  |
|          |                                       |                | io.netty:netty-codec-http2:4.1.133.Final,io.netty:netty-codec-http2:4.2.13.Final,                  |
|          |                                       |                | io.netty:netty-codec-http:4.1.133.Final                                                            |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| HIGH     | netty-codec-http2-4.1.132.Final.jar   | CVE-2026-42587 | Upgrade to version  https://github.com/netty/netty.git - netty-4.2.13.Final,                       |
|          |                                       |                | io.netty:netty-codec-http:4.2.13.Final, https://github.com/netty/netty.git - netty-4.1.133.Final,  |
|          |                                       |                | io.netty:netty-codec-http2:4.1.133.Final,io.netty:netty-codec-http2:4.2.13.Final,                  |
|          |                                       |                | io.netty:netty-codec-http:4.1.133.Final                                                            |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| HIGH     | netty-handler-proxy-4.1.132.Final.jar | CVE-2026-42578 | Upgrade to version  https://github.com/netty/netty.git - netty-4.2.13.Final,                       |
|          |                                       |                | https://github.com/netty/netty.git - netty-4.1.133.Final                                           |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| MEDIUM   | netty-codec-http-4.1.132.Final.jar    | CVE-2026-41417 | Upgrade to version io.netty:netty-codec-http:4.2.13.Final,io.netty:netty-codec-http:4.1.133.Final  |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| MEDIUM   | netty-codec-http-4.1.132.Final.jar    | CVE-2026-42580 | Upgrade to version  https://github.com/netty/netty.git - netty-4.1.133.Final,                      |
|          |                                       |                | https://github.com/netty/netty.git - netty-4.2.13.Final,io.netty:netty-codec-http:4.1.133.Final,   |
|          |                                       |                | io.netty:netty-codec-http:4.2.13.Final                                                             |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| MEDIUM   | netty-codec-http-4.1.132.Final.jar    | CVE-2026-42581 | Upgrade to version io.netty:netty-codec-http:4.2.13.Final,io.netty:netty-codec-http:4.1.133.Final, |
|          |                                       |                | https://github.com/netty/netty.git - netty-4.2.13.Final, https://github.com/netty/netty.git -      |
|          |                                       |                | netty-4.1.133.Final                                                                                |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+
| MEDIUM   | netty-codec-http-4.1.132.Final.jar    | CVE-2026-42585 | Upgrade to version io.netty:netty-codec-http:4.2.13.Final,io.netty:netty-codec-http:4.1.133.Final  |
+----------+---------------------------------------+----------------+----------------------------------------------------------------------------------------------------+


Paths at risk

P = policy violation
MSC = malicious vulnerability
CRITICAL/HIGH/MEDIUM/LOW = vulnerability severity

quarkus-rest-client-jackson-3.35.2.jar
|-- quarkus-rest-jackson-common-3.35.2.jar
	|-- quarkus-jackson-3.35.2.jar
		|-- vertx-core-4.5.26.jar
			|-- netty-codec-http2-4.1.132.Final.jar [1 HIGH]
			|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
			|-- netty-handler-proxy-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-socks-4.1.132.Final.jar
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-resolver-dns-4.1.132.Final.jar
				|-- netty-codec-dns-4.1.132.Final.jar [1 HIGH]
					|-- netty-codec-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
quarkus-smallrye-health-3.35.2.jar
|-- quarkus-vertx-http-3.35.2.jar
	|-- quarkus-vertx-3.35.2.jar
		|-- netty-codec-haproxy-4.1.132.Final.jar
			|-- netty-codec-4.1.132.Final.jar [1 HIGH]
		|-- quarkus-netty-3.35.2.jar
			|-- netty-codec-http2-4.1.132.Final.jar [1 HIGH]
				|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-codec-http-4.1.132.Final.jar [2 HIGH, 4 MEDIUM]
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-codec-4.1.132.Final.jar [1 HIGH]
			|-- netty-handler-4.1.132.Final.jar
				|-- netty-codec-4.1.132.Final.jar [1 HIGH]


No Policy violations were detected

Project 'trustbox' was updated, for more information, visit the Mend platform: https://ibmets.whitesourcesoftware.com/app/orgs/Enterprise%20Applications/applications/summary?project=33ec8085-b640-4d59-b88e-f67b3a6d56b1
Or the Core UI: https://ibmets.whitesourcesoftware.com/Wss/WSS.html#!project;token=7801d89d14e34f0bbc1dd5686dd7d3c879a7205ad28e48ecac2989849391299f

Mend AI scan succeeded.

Support Token: 0defa5d5aae4a42779807c9ab490cdb531778748427919
SAST scan output 
*no findings*

Full logs and artifacts

@thescouser89 thescouser89 merged commit 919494c into main May 15, 2026
2 checks passed
@rnc rnc deleted the NCL9661 branch May 15, 2026 15:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@thescouser89 thescouser89 thescouser89 approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@rnc @thescouser89