fix(#1714): CVE-2020-8908 Low severity vulnerability in Guava

finos / datahelix

The DataHelix generator allows you to quickly create data, based on a JSON profile that defines fields and the relationships between them, for the purpose of testing and validation

https://finos.github.io/datahelix/

Apache License 2.0

141 stars 50 forks source link

fix(#1714): CVE-2020-8908 Low severity vulnerability in Guava #1717

Closed willsalt-sl closed 3 years ago

willsalt-sl commented 3 years ago

Description

This PR is in response to CVE-2020-8908, a low severity vulnerability in the Guava library, a transitive dependency of DataHelix via Guice

Changes

All packages which depend on Guice have had transitive dependency constraints added to build.gradle

Issue

Resolves #1714