Closed inktomi closed 1 year ago
Describe the bug Version 1.35.2 of the Google API Client is vulnerable to the following CVEs due to dependencies it uses:
The latest version (2.2.0) is not vulnerable.
To Reproduce
Include flank in a build that checks for CVE issues in dependencies. See a failure do to the above CVEs.
Expected behavior Flank does not introduce security vulnerabilities in projects that use it.
Details
Refer to Versions.kt to see that Flank is using an outdated version of GOOGLE_API.
GOOGLE_API
Describe the bug Version 1.35.2 of the Google API Client is vulnerable to the following CVEs due to dependencies it uses:
The latest version (2.2.0) is not vulnerable.
To Reproduce
Include flank in a build that checks for CVE issues in dependencies. See a failure do to the above CVEs.
Expected behavior Flank does not introduce security vulnerabilities in projects that use it.
Details
Refer to Versions.kt to see that Flank is using an outdated version of
GOOGLE_API
.