Included libraries out of date
shiftbreak opened this issue · comments
ShiftBreak commented
Libraries included within /ScoutSuite/blob/master/ScoutSuite/output/data/includes.zip
are outdated and have known security issues.
- Handlebars 3.0.0
- jquery 3.3.1
- bootstrap 4.2.1
These issues are almost certainly not exploitable given the report is generated as a static site; however, from a risk management perspective, using outdated libraries causes additional overhead for users who work for organisations which manage risks related to software supply chain. It may be quite simple to just bundle updated versions which will save the effort of getting exceptions.