aboutcode-data
diff --git a/‎data/fix-commits/advisory-database-b78f1d41.json‎
Lines changed: 8 additions & 6 deletions b/‎data/fix-commits/advisory-database-b78f1d41.json‎
Lines changed: 8 additions & 6 deletions
diff --git a/‎data/fix-commits/prometheus-f95ed07a.json‎
Lines changed: 6 additions & 0 deletions b/‎data/fix-commits/prometheus-f95ed07a.json‎
Lines changed: 6 additions & 0 deletions
@@ -1,6 +1,14 @@
 {
   "vcs_url": "https://github.com/github/advisory-database",
   "vulnerabilities": {
+    "GHSA-H4PH-CRVJ-9H92": {
+      "979d2346b01d79241d56b7f7fb756d7ecdcd1bae": "Improve GHSA-h4ph-crvj-9h92",
+      "82292b8f669707ae0bd68cabe88a2112d33d61ed": "Publish Advisories\n\nGHSA-3234-gxc3-pq6f\nGHSA-h4ph-crvj-9h92\nGHSA-ph9p-34f9-6g65"
+    },
+    "GHSA-3234-GXC3-PQ6F": {
+      "8b7ed917fee8060809d66ab3c3f9a1c8df81db39": "Improve GHSA-3234-gxc3-pq6f",
+      "82292b8f669707ae0bd68cabe88a2112d33d61ed": "Publish Advisories\n\nGHSA-3234-gxc3-pq6f\nGHSA-h4ph-crvj-9h92\nGHSA-ph9p-34f9-6g65"
+    },
     "GHSA-3MQG-485V-X9G7": {
       "df946d7c6a3aac3107866356844452717eb163be": "Publish GHSA-3mqg-485v-x9g7"
     },
@@ -2163,12 +2171,6 @@
     "GHSA-VHJM-W67Q-G75C": {
       "73c1f05dcdeaf1077aa7dd98f8206b3caef82851": "Publish Advisories\n\nGHSA-36hh-x5p5-jgc8\nGHSA-vhjm-w67q-g75c"
     },
-    "GHSA-3234-GXC3-PQ6F": {
-      "82292b8f669707ae0bd68cabe88a2112d33d61ed": "Publish Advisories\n\nGHSA-3234-gxc3-pq6f\nGHSA-h4ph-crvj-9h92\nGHSA-ph9p-34f9-6g65"
-    },
-    "GHSA-H4PH-CRVJ-9H92": {
-      "82292b8f669707ae0bd68cabe88a2112d33d61ed": "Publish Advisories\n\nGHSA-3234-gxc3-pq6f\nGHSA-h4ph-crvj-9h92\nGHSA-ph9p-34f9-6g65"
-    },
     "GHSA-PH9P-34F9-6G65": {
       "82292b8f669707ae0bd68cabe88a2112d33d61ed": "Publish Advisories\n\nGHSA-3234-gxc3-pq6f\nGHSA-h4ph-crvj-9h92\nGHSA-ph9p-34f9-6g65"
     },
 
@@ -1,6 +1,12 @@
 {
   "vcs_url": "https://github.com/prometheus/prometheus",
   "vulnerabilities": {
+    "CVE-2025-61140": {
+      "2625721ebaa86873c04357a9a222700cab9ebc02": "ui: update jsonpath to 1.3.0\n\nThis addresses CVE-2025-61140 and CVE-2025-1615 by updating jsonpath to a patched version.\n\nSigned-off-by: Oindrila Khan <oindrilakha12@gmail.com>"
+    },
+    "CVE-2025-1615": {
+      "2625721ebaa86873c04357a9a222700cab9ebc02": "ui: update jsonpath to 1.3.0\n\nThis addresses CVE-2025-61140 and CVE-2025-1615 by updating jsonpath to a patched version.\n\nSigned-off-by: Oindrila Khan <oindrilakha12@gmail.com>"
+    },
     "GHSA-39J6-789Q-QXVH": {
       "9122d1f50bd3056bffd035b202612fe116c13efd": "Merge pull request #18650 from roidelapluie/roidelapluie/ghsa-39j6-789q-qxvh-3.5\n\ndiscovery/stackit: use config.Secret for ServiceAccountKey and PrivateKey",
       "fd2d158f49819797216c263790fd46370be1b06a": "discovery/stackit: use config.Secret for ServiceAccountKey and PrivateKey\n\nFixes GHSA-39j6-789q-qxvh\n\nSigned-off-by: Julien Pivotto <291750+roidelapluie@users.noreply.github.com>",