stevesaliman
commented
6 years ago Would version 2.4.12 be sufficient? I'd prefer not to exceed the version of Groovy being used by Gradle, and 2.4.12 is what it uses.
Closed smulesoft closed 6 years ago
stevesaliman
commented
6 years ago Would version 2.4.12 be sufficient? I'd prefer not to exceed the version of Groovy being used by Gradle, and 2.4.12 is what it uses.
smulesoft
commented
6 years ago @stevesaliman We could try that, in the worst case scenario I'll do another PR or open an Issue :+1:
stevesaliman
commented
6 years ago Version 2.0.1 of the DSL has just been released, and should be available in Maven Central shortly. Thank you for the heads up on that CVE, I wasn't aware of it before.
smulesoft
commented
6 years ago @stevesaliman awesome! I'll get back to you later to confirm this worked for us :+1:
smulesoft
commented
6 years ago @stevesaliman Yeap, that did it. Our scan is now showing no critical threats. Thanks for your quick collaboration!
Hi @stevesaliman I need this upgrade because according to our NexusIQ scans the following dependency has a security threat: