Open yingbull opened 2 days ago
New and removed dependencies detected. Learn more about Socket for GitHub โ๏ธ
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
maven/org.apache.cxf/cxf-rt-transports-http@3.6.4 | eval, filesystem, network, unsafe Transitive: environment, shell | +8 |
19.9 MB |
๐ฎ Removed packages: maven/org.apache.cxf/cxf-rt-transports-http@3.2.0
Snyk has created this PR to upgrade org.apache.cxf:cxf-rt-transports-http from 3.2.0 to 3.6.4.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 54 versions ahead of your current version.
The recommended version was released on 3 months ago.
Issues fixed by the recommended upgrade:
SNYK-JAVA-ORGAPACHECXF-1039798
SNYK-JAVA-ORGAPACHECXF-3168313
SNYK-JAVA-ORGAPACHECXF-31691
SNYK-JAVA-ORGAPACHECXF-542666
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: