aurelien-baudet
commented
5 years ago Manually merged since all dependencies have been updated
Closed kadary closed 5 years ago
aurelien-baudet
commented
5 years ago Manually merged since all dependencies have been updated
Some direct or transitive deps of goham are vulnerable to multiple attacks:
https://app.snyk.io/vuln/SNYK-JAVA-ORGAPACHETIKA-72870 (#56) https://app.snyk.io/vuln/SNYK-JAVA-OGNL-30474 (#57) https://app.snyk.io/vuln/SNYK-JAVA-COMGOOGLEGUAVA-32236 (#58) https://app.snyk.io/vuln/SNYK-JAVA-ORGAPACHETIKA-72437 (#56) This PR fix those issues by simply upgrading their versions to a more secure one.