Closed hduelme closed 1 year ago
I upgrade commons-text to 1.10.0 to prevent any use of CVE-2022-4288. Currently this dependency is only used in tests, so the main plugin is not effected, but still it should be upgraded. The effected StringSubstitutor is used in tests.
commons-text
StringSubstitutor
Thanks @hduelme
filiphr
commented
1 year ago
I upgrade
commons-textto 1.10.0 to prevent any use of CVE-2022-4288. Currently this dependency is only used in tests, so the main plugin is not effected, but still it should be upgraded. The effectedStringSubstitutoris used in tests.