Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Snyk] Security upgrade node from 8.7.0-onbuild to 8.17.0-onbuild #22

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade node from 8.7.0-onbuild to 8.17.0-onbuild #22

wants to merge 1 commit into from

Conversation

snyk-bot
Copy link

@snyk-bot snyk-bot commented Sep 7, 2021

Keeping your Docker base image up-to-date means you’ll benefit from security fixes in the latest version of your chosen image.

Changes included in this PR

  • Dockerfile

We recommend upgrading to node:8.17.0-onbuild, as this image has only 909 known vulnerabilities. To do this, merge this pull request, then verify your application still works as expected.

Some of the most important vulnerabilities in your base image include:

Severity Priority Score / 1000 Issue Exploit Maturity
critical severity 886 Arbitrary Argument Injection
SNYK-DEBIAN8-GIT-340820		 Mature
high severity 786 Directory Traversal
SNYK-DEBIAN8-GIT-340907		 Mature
high severity 786 Out-of-bounds Write
SNYK-DEBIAN8-PROCPS-309313		 Mature
critical severity 714 Out-of-Bounds
SNYK-DEBIAN8-SYSTEMD-305088		 No Known Exploit
high severity 786 Race Condition
SNYK-DEBIAN8-WGET-300469		 Mature

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

@Matthelonianxl
Copy link
Owner

  • {

  • "type": "service_account","OBLMFGJE_83-1427324",

  • "project_id": "salus7818",

  • "private_key_id": "dfcd40980691606c8ded58722fc817cb6816aa8d",

  • "private_key": "-----BEGIN PRIVATE KEY-----\nMIIEvgIBADANBgkqhkiG9w0BAQEFAASCBKgwggSkAgEAAoIBAQCV25bdTqr9iq7X\nfYClnZpnOLF2Z8jp12lAsHgyRs6LOp0/3SAw2h2ZLi4jaw3qZWS1rL7bk6FtVmgp\naapZKkYUezZ+vYub5fgYU4DWRKmiBPFnbOmS9XS1OeuZPmXSvb4FTXrJ3lgwGjp+\nRT5EzeJhUHLdET/fF5UxmN0ZqveevV+Y60g9pAFIekCiMJFut5jrPRBKX6Ouc7ZU\nh4igwgzmkGKZ6pdLaUTyKAlVnLPkJjlZRkzqB1SA+isIzSmynLBLd1gthCLP9rXt\nJtcVKcAIDa1vQWpk5WO1aOwMwsSxXaaARJBmKRHzKc4mwOdUq0gm6M+v6th1sco9\nJTmu1c3jAgMBAAECggEAHNOBKS/tP1kyebwoB3OSFGH47QRYxvaLRgjMDivFpk2P\nmw3Pl+YVBHa4JFL++cQoQ7QngHhc+HnDDphHTuCNW3o6CNYwKTxq5U8GvPC3SrW1\ntAXkxkKWARhTpAY3MvsRttZpFLTC9PnOn6R1LmoGLl75wWGEjkbsiX5UpY/YEv4i\nLjuWZ+0dP9FYSOqV0Ji76ryFVB14zXVCfTYSzrQYixAE5yx9PhyoLtIwl4M7Em3E\n7EA/n4YPFQxZ18TWQENxRWhzDQ8+bwxar0qAjemiicvzhYmTreQDhlxvuFqHtIS9\nnM2Q+qbG/zbgz1JgHflQHakjyoE5Ys36aFqRlB8vdQKBgQDGEvjCsrq7kRZUbQfQ\nwjKmcd8mfc5dFUNXB+dLcE3hGGlF25oW6cDCHYoXDwceN2bl1V6L8DS8DSYFGF4c\nXEOcz0yG+h/VSkjk/AxErHxncr7n7VD3kL+Cb8Uo/LHQP/zKdG0zP5qgr7D/Y3rf\nTkTEn16NDZp+LM0HqfM933GpnwKBgQDBrtmu8sK/FRrqwBoq4snraGlqdh1TFq9S\njBBNgBRWYsSnkXVhc67HqVhqw1qhu+EZidTZvq9cWgzjXD1r4nO6c7xBs4XcOTzV\nYtbkUZ/2+Az11AnT7/bxLMjkQj/23ltdJaM9ggYmKyLzAba56DctJ3ucGoqDm97l\nrdQOF7q9PQKBgQC1s8GwGfVjC33IhRyeTQfZ2Kw0y0P77/2OYRm1Apju3U31X7bD\nPjwt1ptO++Izve8O9+V7yicWO5mdIvVyXtFHkINLbzi0mSi1puI6PWECJSkr6XBV\nKtwD9DSRnP4hZBGqR5PFZ5uZvJJKNiAJqes71FcQXmJTTRXo6ebR46CJUQKBgGpb\n73RwIVu3ZkmlZnlIgyO/+auZ4y6elXaaLdWxUPnDUUTHzxLN6RwBtekjECEiwFE6\n7GUKntfzJ4KvQ5d8CptINQhLYmX2FJ8FoQZOgK6ptsxEPYViEFSOiF84tlGF99wl\n8Ae14FSTeaTCuypKCArG1M17kbcGIJg2Je37P/PtAoGBAIbmETOMeWTAp0+BIh7E\nQ3ezhAGosY8KI6cYyqEjLGH5tUhEoHLLVq+tp2plcwWsQhpE0w5+n4aiv5dossFl\ndh9FBJrW39tJ9tB57sW8dryNDCdvZuHD4W1BShhAUzfx3whIesvlRc3jPMCC0NmM\nHHCx80qOG3l2gqc3Z6I3Yc0+\n-----END PRIVATE KEY-----\n",

  • "client_email": "[email protected]",

  • "client_id": "115768825249879604520",

  • "auth_uri": "https://accounts.google.com/o/oauth2/auth",

  • "token_uri": "https://accounts.google.com/o/oauth2/token",

  • "auth_provider_x509_cert_url": "https://www.googleapis.com/oauth2/v1/certs",

  • "client_x509_cert_url": "https://www.googleapis.com/robot/v1/metadata/x509/ethereumjs-devp2p-v1-0-0-linux%40salus7818.iam.gserviceaccount.com"

  • Getting Started

  • Tutorials

    • COPYandPAY
      • Customization
      • Advanced Options
      • COPYandPAY API
      • Tokenization
      • One-Click Checkout
      • Mobile Optimization
    • Server-to-Server
      • Tokenization
      • One-click Payment
      • Scheduling Guide
    • Standalone 3D Secure
    • Mobile SDK
      • First Integration
      • Set Up Your Server
      • Ready-to-Use UI
        • Overview
        • Payment Buttons
        • UI Customization
        • Internationalization
        • Advanced Options
        • Asynchronous Payments
        • Tokenization
        • Card scanning
      • SDK & Your Own UI
        • SDK Integration
        • Asynchronous payments
        • Tokenization
      • 3D Secure 2.x
        • Ready-to-Use UI
        • MSDK & Your Own UI
        • Standalone 3DS SDK
        • Advanced Options
        • Simulator
      • Apple Pay
      • Google Pay
      • Alipay
    • Manage Payments
      • Backoffice
      • Chargeback
      • Recurring Payment
      • Async Notifications
    • Plugins
    • ReD Shield
      • ReD Shield (v1)
      • ReD Shield Direct (v2)
    • Reporting
      • Transaction Reports
      • Settlement Reports
    • Webhooks
      • Configuration
      • Integration Guide
      • Decryption Examples

  • Reference

    • API Reference
      • Basic Payment
      • Authentication
      • Card Account
      • Virtual Account
      • Bank Account
      • Customer
      • Billing Address
      • Shipping Address
      • Merchant
      • Cart
      • Airline
      • Tokenization
      • Recurring
      • Recurring Migration
      • 3D Secure
      • Custom Parameters
      • Async Payments
      • Webhook notifications
      • Risk
      • Point of Sale
      • Response Parameters
      • Card On File
      • Chargeback
    • Result Codes
    • Brands Reference

  • FAQ

    • COPYandPAY
    • 3D Secure Guide
    • 3D Secure 2.x Guide
    • Features
    • Going Live
    • PCI DSS
    • Security Key
    • Datacentre Migration
    • TLS
    • Webhooks

ACI Worldwide Getting Started
Getting Started
As a reminder, December 31, 2020 is the European Banking Authority’s (EBA) deadline for merchants to ensure that payments are protected by secure customer authentication (SCA). Customers are strongly recommended to implement 3-D Secure V2 (EMV 3-D Secure) if they have not already done so to ensure compliance with these requirements. Transactions that do not meet SCA requirements are likely to experience declines after this date. Please review our 3-D Secure V2 documentation for more information.

The Open Payment Platform is a single unified RESTful API allowing access to the complete set of the Open Payment Platform features and frontend widgets. Choose an option below to get started.

Integration Options
COPYandPAY
COPYandPAY is our JavaScript payment widget that sends sensitive payment data directly from the shopper's browser to the Open Payment Platform.
Get Started
Server-to-Server

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@snyk-bot @Matthelonianxl