uuid icon indicating copy to clipboard operation
uuid copied to clipboard
verified publisher icon google

Artifactory Xray showing google/uuid as malicious

Open TanishGuleria opened this issue 2 months ago • 5 comments

Artifactory Xray showing google/uuid as 1 Malicious packages for al version of uuid , not sure if its a false positive from jfrom xray

TanishGuleria avatar Dec 07 '25 10:12 TanishGuleria

This is blocking deployments of harbor, traefik, external-secrets...and so on :(

ihrahc01 avatar Dec 08 '25 09:12 ihrahc01

This needs to be remediated ASAP, bunch of images are depending on it and are not considered safe to run

hraplb avatar Dec 08 '25 09:12 hraplb

It is a false positive on artifactorys end. If you are self hosting it or have access to your xray database please contact them.

Sitzdev avatar Dec 08 '25 10:12 Sitzdev

The misidentification was a temporary issue on JFrog's side which is already addressed, and not related to this repository. JFrog Artifactory & Xray users who are still experiencing this are advised to contact JFrog support for guidance.

srmish-jfrog avatar Dec 08 '25 11:12 srmish-jfrog

The misidentification was a temporary issue on JFrog's side which is already addressed, and not related to this repository. JFrog Artifactory & Xray users who are still experiencing this are advised to contact JFrog support for guidance.

Tks for the support ;)

Guillain-A avatar Dec 08 '25 14:12 Guillain-A