We are a research team working on third-party library analysis. We have found that some widely-used third-party libraries in your project have major/critical bugs, which will degrade the quality of your project. We highly recommend you to update those libraries to new versions.
We have attached the buggy third-party libraries and corresponding jira issue links below for you to have more detailed information. We have analyzed the api call related to the following libraries and found one library that is using the API call that might invoke buggy methods in the library of the history.
commons-lang commons-lang
version: 2.4
API call in your project:org.apache.commons.lang.builder.HashCodeBuilder.toIdentityHashCodeInteger(Object)
Hi, there!
We are a research team working on third-party library analysis. We have found that some widely-used third-party libraries in your project have major/critical bugs, which will degrade the quality of your project. We highly recommend you to update those libraries to new versions.
We have attached the buggy third-party libraries and corresponding jira issue links below for you to have more detailed information. We have analyzed the api call related to the following libraries and found one library that is using the API call that might invoke buggy methods in the library of the history.
Jira issues: StringEscapeUtils.escapeJava(String) escapes '/' characters version:2.4 Fix case-insensitive string handling version:2.4 StringEscapeUtils.escapeHTML() does not escape chars (0x00-0x20) version:2.4 DateUtils.round doesn't work correct for Calendar.AM_PM version:2.4 Lower Ascii Characters don't get encoded by Entities.java version:2.4 Issue in HashCodeBuilder which only shows up under high load multi-threaded usage. version:2.4 Ant build file does not include ReflectTestSuite version:2.4 EqualsBuilder and HashCodeBuilder treat java.math.BigDecimal inconsistantly and break general contract of hashCode version:2.4 JDK 1.5 build/runtime failure on LANG-393 (EqualsBuilder) version:2.4 ExtendedMessageFormat: OutOfMemory with custom format registry and a pattern containing single quotes version:2.4 parseDate cannot parse ISO8601 dates produced by FastDateFormat version:2.4 DateFormatUtils.format does not correctly change Calendar TimeZone in certain situations version:2.4 StringUtils replaceEach - Bug or Missing Documentation version:2.4 Javadoc wrong for StringUtils startsWith; startsWithIgnoreCase; endsWith and endsWithIgnoreCase version:2.4 HashCodeBuilder reflectionAppend creates unnecessary copy of excludeFields version:2.4 ExceptionUtils uses mutable lock target version:2.4 ClassUtils.toClass(Object[]) throws NPE on null array element version:2.4 StringUtils lastIndexOf(String str; char searchChar; int startPos) not working version:2.4
Sincerely~ FDU Software Engineering Lab Marth 14th,2019