fix(sec): upgrade org.springframework:spring-core to 5.2.19.RELEASE

alibaba / compileflow

🎨 core business process engine of Alibaba Halo platform, best process engine for trade scenes. | 一个高性能流程编排引擎

Apache License 2.0

1.82k stars 268 forks source link

fix(sec): upgrade org.springframework:spring-core to 5.2.19.RELEASE #127

Open Super-Sky opened 1 year ago

Super-Sky commented 1 year ago

What happened？

There are 1 security vulnerabilities found in org.springframework:spring-core 3.2.18.RELEASE

CVE-2021-22060

What did I do？

Upgrade org.springframework:spring-core from 3.2.18.RELEASE to 5.2.19.RELEASE for vulnerability fix

What did you expect to happen？

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

CLAassistant commented 1 year ago

Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
_{You have signed the CLA already but the status is still pending? Let us recheck it.}