Phantom security vulnerabilities?

Hello, when I push to my repo from the cli, it says that “GitHub found 113 vulnerabilities on spoonsso/dannce’s default branch… To find more, visit https//github.com/spoonsso/security/dependabot”

But when I visit that link, I only see one dependabot alert listed. 113 is quite alarming, so I was hoping to review them. But I don’t see them anywhere. Am I missing something obvious?

Thanks

:wave: Welcome!

I can see how that might be alarming alright! I’ve had a look and I think the answer is here in the release notes for Tensorflow 2.5.0 - scroll down to the security bullet point.

Because all of these were fixed by bumping to 2.5.0, it only generated a single PR.

1 Like