❗️Scan Incomplete: The scan completed with partial failure. The integration encountered issues with one or more projects in this repository, preventing their scan. The errors occurred in the following package managers: go. Consequently, there may be gaps in the coverage of open-source dependencies used in the repository.

Scan Details Report

go

/tmp/ws-scm/cline/go.work

Step	Level	Description	Details
Preparing the project for scan	⚠Warn	One or more of the operation commands failed to execute	failed to run go mod download: go: github.com/cline/grpc-go@v0.0.0 (replaced by ./src/generated/grpc-go): reading src/generated/grpc-go/go.mod: open /tmp/ws-scm/cline/src/generated/grpc-go/go.mod: no such file or directory

You have successfully remediated 7 vulnerabilities, but introduced 1 new vulnerabilities in this branch.

❌ New vulnerabilities:

Vulnerability	Severity	CVSS Score	Vulnerable Library	Direct Library	Suggested Fix	Issue	Reachability
CVE-2026-0621 Path to dependency file: /package.json Path to vulnerable library: /package.json Dependency Hierarchy: -> ❌ sdk-1.11.2.tgz (Vulnerable Library)	High	7.5	Direct sdk-1.11.2.tgz	sdk-1.11.2.tgz	@modelcontextprotocol/sdk - 1.25.2	None	Unreachable

✔️ Remediated vulnerabilities:

Vulnerability	Vulnerable Library
CVE-2026-0994	protobuf-6.33.0-cp39-abi3-manylinux2014_x86_64.whl
CVE-2024-51999	express-4.21.2.tgz
CVE-2024-51999	express-5.0.1.tgz
CVE-2026-0621	sdk-1.11.1.tgz
CVE-2025-66471	urllib3-2.5.0-py3-none-any.whl
CVE-2025-404142	buffers-0.1.1.tgz
CVE-2026-21441	urllib3-2.5.0-py3-none-any.whl

Base branch total remaining vulnerabilities: 32
Base branch commit: 3a1482db0cfec151e1921e5db4cc86305004c5d0


Total libraries scanned: 1981

Scan token: 38e7e0edb8e146c3b390e476b74532ee