Open snyk-bot opened 5 years ago
Thank you for your submission, we really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.
Description
This PR fixes one or more vulnerable packages in the
maven
dependencies of this project. See the Snyk test report for more details.Snyk Project: aliyun/aliyun-tablestore-java-sdk:pom.xml
Snyk Organization: JacksonTian (GitHub marketplace)
Changes included in this PR
Vulnerabilities that will be fixed
With an upgrade:
pom.xml
com.google.protobuf:protobuf-java@2.4.1 > com.google.protobuf:protobuf-java@3.4.0
You can read more about Snyk's upgrade and patch logic in Snyk's documentation.
Check the changes in this PR to ensure they won't cause issues with your project.
Stay secure, The Snyk team
Note: You are seeing this because you or someone else with access to this repository has authorised Snyk to open Fix PRs. To review the settings for this Snyk project please go to the project settings page.