sebastian-j-ibanez
commented
3 weeks ago More details on the security issue are here: https://github.com/cc-ar-emr/open-o-previous/security/dependabot/204
Open sebastian-j-ibanez opened 3 weeks ago
sebastian-j-ibanez
commented
3 weeks ago More details on the security issue are here: https://github.com/cc-ar-emr/open-o-previous/security/dependabot/204
We need to upgrade Apache cxf-core from 3.2.0 to 3.5.8.
3.5.8 includes a patch for a major security vulnerability (details here).
This means we will need to refactor several classes so that they use OAuth2 instead of OAuth1.
These classes include: