Skip to content

Update checks and battery efficiency coverage #148

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
Muriel2Horak wants to merge 4 commits into from

Update checks and battery efficiency coverage

a9f2215
Select commit
Loading
Failed to load commit list.
Closed

Update checks and battery efficiency coverage #148

Update checks and battery efficiency coverage
a9f2215
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / Mend Security Check succeeded Jan 14, 2026 in 1m 40s

Security Report

You have successfully remediated 8 vulnerabilities, but introduced 6 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2026-21441

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/91/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/114/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/29/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/30/urllib3-1.26.20-py2.py3-none-any.whl

Dependency Hierarchy:

-> ❌ urllib3-1.26.20-py2.py3-none-any.whl (Vulnerable Library)

High 8.6 Direct urllib3-1.26.20-py2.py3-none-any.whl urllib3-1.26.20-py2.py3-none-any.whl 2.6.3 None
CVE-2025-66471

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/91/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/114/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/29/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/30/urllib3-1.26.20-py2.py3-none-any.whl

Dependency Hierarchy:

-> ❌ urllib3-1.26.20-py2.py3-none-any.whl (Vulnerable Library)

High 8.6 Direct urllib3-1.26.20-py2.py3-none-any.whl urllib3-1.26.20-py2.py3-none-any.whl urllib3 - 2.6.0,https://github.com/urllib3/urllib3.git - 2.6.0 None
CVE-2025-66418

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/91/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/114/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/29/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/30/urllib3-1.26.20-py2.py3-none-any.whl

Dependency Hierarchy:

-> ❌ urllib3-1.26.20-py2.py3-none-any.whl (Vulnerable Library)

High 8.6 Direct urllib3-1.26.20-py2.py3-none-any.whl urllib3-1.26.20-py2.py3-none-any.whl https://github.com/urllib3/urllib3.git - 2.6.0,urllib3 - 2.6.0 None
CVE-2025-68146

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/69/filelock-3.19.1-py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/59/filelock-3.19.1-py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/127/filelock-3.19.1-py3-none-any.whl

Dependency Hierarchy:

-> ❌ filelock-3.19.1-py3-none-any.whl (Vulnerable Library)

Medium 6.3 Direct filelock-3.19.1-py3-none-any.whl filelock-3.19.1-py3-none-any.whl filelock - 3.20.1 None
CVE-2026-22701

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/69/filelock-3.19.1-py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/59/filelock-3.19.1-py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/127/filelock-3.19.1-py3-none-any.whl

Dependency Hierarchy:

-> ❌ filelock-3.19.1-py3-none-any.whl (Vulnerable Library)

Medium 5.3 Direct filelock-3.19.1-py3-none-any.whl filelock-3.19.1-py3-none-any.whl 3.20.3 None
CVE-2025-50181

Path to dependency file: /requirements.txt

Path to vulnerable library: /tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/91/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/114/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/29/urllib3-1.26.20-py2.py3-none-any.whl,/tmp/ws-ua_20260114101256_KCQLTN/python_FCAKPK/20260114101300/30/urllib3-1.26.20-py2.py3-none-any.whl

Dependency Hierarchy:

-> ❌ urllib3-1.26.20-py2.py3-none-any.whl (Vulnerable Library)

Medium 5.3 Direct urllib3-1.26.20-py2.py3-none-any.whl urllib3-1.26.20-py2.py3-none-any.whl 2.5.0 None

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2024-47081 requests-2.32.3-py3-none-any.whl
CVE-2025-66471 urllib3-2.4.0-py3-none-any.whl
CVE-2026-21441 urllib3-2.4.0-py3-none-any.whl
CVE-2025-50182 urllib3-2.4.0-py3-none-any.whl
CVE-2025-48945 pycares-4.6.1-cp39-cp39-manylinux_2_17_x86_64.manylinux2014_x86_64.whl
CVE-2025-50181 urllib3-2.4.0-py3-none-any.whl
CVE-2025-4565 protobuf-5.29.4-cp38-abi3-manylinux2014_x86_64.whl
CVE-2025-66418 urllib3-2.4.0-py3-none-any.whl

Base branch total remaining vulnerabilities: 8
Base branch commit: c51e8349e50f696c660d7924cb7c8b484c2c45ea


Total libraries scanned: 137

Scan token: 3aa37dd12a87434582cc19116acd2045

View more details on Mend Bolt for GitHub