search

Optum / sourcehawk

Sourcehawk is an extensible compliance as code tool which allows development teams to run compliance scans on their source code.
https://optum.github.io/sourcehawk
GNU General Public License v3.0
0 stars 1 forks source link

There is a vulnerability in maven-model 3.6.3,upgrade recommended #58

Closed QiAnXinCodeSafe closed 2 years ago

QiAnXinCodeSafe commented 3 years ago

https://github.com/Optum/sourcehawk/blob/072cb4ec9c83b389f1ec3cf11e485e0b7568184f/enforcer/file/maven/pom.xml#L28-L30

CVE-2021-26291

Recommended upgrade version:3.8.1