Skip to content

Add built-in databaseRename option for snapshot jobs #279

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
Sarumyan wants to merge 1 commit into from

feat: add built-in databaseRename option for snapshot jobs

6aac8d0
Select commit
Loading
Failed to load commit list.
Closed

Add built-in databaseRename option for snapshot jobs #279

feat: add built-in databaseRename option for snapshot jobs
6aac8d0
Select commit
Loading
Failed to load commit list.
Mend Bolt for GitHub / WhiteSource Security Check failed Feb 13, 2026 in 21m 19s

Security Report

You have successfully remediated 18 vulnerabilities, but introduced 2 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability Severity CVSS Score Vulnerable Library Direct Library Suggested Fix Issue
CVE-2026-1615

Path to dependency file: /ui/package.json

Path to vulnerable library: /ui/node_modules/.pnpm/jsonpath@1.2.1/node_modules/jsonpath/package.json

Dependency Hierarchy:

-> @postgres.ai/ce-4.0.3.tgz (Root Library)

   -> react-scripts-5.0.1.tgz

     -> bfj-7.1.0.tgz

       -> ❌ jsonpath-1.2.1.tgz (Vulnerable Library)

Critical 9.8 Transitive jsonpath-1.2.1.tgz @postgres.ai/ce-4.0.3.tgz Transitive jsonpath - 1.2.1 None
CVE-2025-69873

Path to dependency file: /ui/package.json

Path to vulnerable library: /ui/node_modules/.pnpm/ajv@8.17.1/node_modules/ajv/package.json

Dependency Hierarchy:

-> @postgres.ai/ce-4.0.3.tgz (Root Library)

   -> react-scripts-5.0.1.tgz

     -> workbox-webpack-plugin-6.6.0.tgz

       -> workbox-build-6.6.0.tgz

         -> ❌ ajv-8.17.1.tgz (Vulnerable Library)

High 7.5 Transitive ajv-8.17.1.tgz @postgres.ai/ce-4.0.3.tgz #278

✔️ Remediated vulnerabilities:

Vulnerability Vulnerable Library
CVE-2025-13465 lodash-es-4.17.21.tgz
CVE-2025-66031 node-forge-1.3.1.tgz
CVE-2025-68157 webpack-5.95.0.tgz
CVE-2026-2391 qs-6.13.0.tgz
CVE-2026-24001 diff-4.0.2.tgz
CVE-2025-64718 js-yaml-3.14.1.tgz
CVE-2025-15284 qs-6.14.0.tgz
CVE-2025-69873 ajv-8.11.0.tgz
CVE-2025-12816 node-forge-1.3.1.tgz
CVE-2025-9288 sha.js-2.4.11.tgz
CVE-2025-13465 lodash-4.17.21.tgz
CVE-2025-15284 qs-6.13.0.tgz
CVE-2025-68458 webpack-5.95.0.tgz
CVE-2025-50537 eslint-8.57.0.tgz
CVE-2026-2391 qs-6.14.0.tgz
CVE-2025-66030 node-forge-1.3.1.tgz
CVE-2025-9287 cipher-base-1.0.4.tgz
CVE-2025-64718 js-yaml-4.1.0.tgz

Base branch total remaining vulnerabilities: 24
Base branch commit: 19a9668a37259e76b6bb441be007c2105f4613c8


Total libraries scanned: 1563

Scan token: 6c9d0bea3edd47719f501cfc3850b06d

View more details on Mend Bolt for GitHub