This PR contains the fix for the Spring4Shell vulnerability (CVE-2022-22965). At the time of writing WCT does not appear to be affected by this issue, since it seems that only deployments inside Tomcat are vulnerable. However, the impact might still turn out to be larger, so it's a good idea to fix this ASAP, in order to be ready to release a patch version if necessary.
This PR contains the fix for the Spring4Shell vulnerability (CVE-2022-22965). At the time of writing WCT does not appear to be affected by this issue, since it seems that only deployments inside Tomcat are vulnerable. However, the impact might still turn out to be larger, so it's a good idea to fix this ASAP, in order to be ready to release a patch version if necessary.