chore: consolidate dependabot updates and bump kiota libraries to 1.10.1 #1482
+23
−23
Microsoft GitHub Policy Service / GitOps/AdvancedSecurity
failed
May 20, 2026 in 0s
Dependency Review
Dependency review detected vulnerable
Details
Dependency review summary
We have found 1 vulnerable package(s).
Vulnerability
Vulnerabilities were filtered by minimum severity Moderate.
| Dependency | File Name | Version | Vulnerability | Severity |
|---|---|---|---|---|
| idna | requirements-dev.txt | 3.14 | Internationalized Domain Names in Applications (IDNA): Specially crafted inputs to idna.encode() can bypass CVE-2024-3651 fix | Moderate |
Loading