search

fireant-bot / fireant

Fireant is a Dependabot-like service (tailored to Apache Ant + Ivy projects) which creates pull requests to keep your dependencies secure and up-to-date.
https://github.com/fireant-bot/fireant
Apache License 2.0
1 stars 1 forks source link

XML parser fixed: keeps comments now #39

Closed jamie-meyer closed 3 years ago

jamie-meyer commented 3 years ago

Avoid deepsource flagging as security vulnerability by fixing how tree is parsed safely.