[🐸 Frogbot] Update version of github.com/buger/jsonparser to 1.1.2 by github-actions[bot] · Pull Request #1251 · jfrog/frogbot

github-actions · 2026-03-20T00:47:45Z

Severity	ID	Contextual Analysis	Direct Dependencies	Impacted Dependency	Fixed Versions
High	-	Not Covered	github.com/jfrog/jfrog-cli-artifactory:v0.8.1-0.20260318085819-0e384f625afc github.com/buger/jsonparser:v1.1.1 github.com/jfrog/jfrog-cli-core/v2:v2.60.1-0.20260225195817-bc599cec3973 github.com/jfrog/build-info-go:v1.13.1-0.20260313042712-238e6dca3dce github.com/jfrog/jfrog-client-go:v1.55.1-0.20260310073256-b6a77f9c75e5 github.com/jfrog/jfrog-cli-security:v1.26.5	github.com/buger/jsonparser v1.1.1	[1.1.2]


Contextual Analysis:	Not Covered
Direct Dependencies:	github.com/jfrog/jfrog-cli-artifactory:v0.8.1-0.20260318085819-0e384f625afc, github.com/buger/jsonparser:v1.1.1, github.com/jfrog/jfrog-cli-core/v2:v2.60.1-0.20260225195817-bc599cec3973, github.com/jfrog/build-info-go:v1.13.1-0.20260313042712-238e6dca3dce, github.com/jfrog/jfrog-client-go:v1.55.1-0.20260310073256-b6a77f9c75e5, github.com/jfrog/jfrog-cli-security:v1.26.5
Impacted Dependency:	github.com/buger/jsonparser:v1.1.1
Fixed Versions:	[1.1.2]
CVSS V3:	7.5

Denial of service in github.com/buger/jsonparser

Upgrade github.com/buger/jsonparser to 1.1.2

e364751

Provide feedback