Fix vulnerabilities from dependencies in 1.3.28

authorjapps / zerocode

A community-developed, free, opensource, automated testing framework for microservices APIs, Kafka(Data Streams) and Load testing. Zerocode Open Source enables you to create, change and maintain your automated test scenarios via simple JSON or YAML files. Visit documentation below:

https://zerocode-tdd.tddfy.com

Apache License 2.0

896 stars 401 forks source link

Fix vulnerabilities from dependencies in 1.3.28 #523

Open Trundicho opened 2 years ago

Trundicho commented 2 years ago

In zerocode 1.3.28 there are listed 11 vulnerabilities from dependencies (See https://mvnrepository.com/artifact/org.jsmart/zerocode-tdd/1.3.28): CVE-2022-23221 CVE-2021-42550 CVE-2021-42392 CVE-2021-29425 CVE-2021-22569 CVE-2020-36518 CVE-2020-15250 CVE-2020-13936 CVE-2017-5929

Can you update them to fix it?

franciscofeo commented 2 years ago

Hi! I would like to help in this issue if someone hasn't already taken it... but I will need some time because I'm new with Maven :sweat_smile: I've found these vulnerabilities in version 1.3.29 too

authorjapps commented 2 years ago

@franciscofeo , Can you please please raise a PR for this?

How to build? Ans: https://github.com/authorjapps/zerocode/blob/master/BUILDING.md

How to contribute? https://github.com/authorjapps/zerocode/blob/master/CONTRIBUTING.md

Malleshkm commented 2 years ago

Hi! I would like to work on this issue if someone hasn't already taken it...

furkannzmnn commented 11 months ago

Can you assign me this task