Closed dbelyaev closed 11 months ago
In my last issue (https://github.com/neuland/pug4j/issues/20) and fix for it, I missed a detail that remediation for the SNYK-JAVA-ORGGRAALVMSDK-5457933 is to upgrade org.graalvm.sdk:graal-sdk to one of these tree versions: 20.3.10, 21.3.6, 22.3.2 or higher (21.3.2 is not enough).
org.graalvm.sdk:graal-sdk
20.3.10
21.3.6
22.3.2
21.3.2
org.graalvm.sdk:graal-sdk@21.3.0
org.graalvm.sdk:graal-sdk@20.3.10
@21.3.6
@22.3.2
This issue should be addressed by utilizing a patched version from the same minor tree: 21.3.6.
@chbloemer excuse multiple PRs\issues can you take a look at it?
In my last issue (https://github.com/neuland/pug4j/issues/20) and fix for it, I missed a detail that remediation for the SNYK-JAVA-ORGGRAALVMSDK-5457933 is to upgrade
org.graalvm.sdk:graal-sdk
to one of these tree versions:20.3.10
,21.3.6
,22.3.2
or higher (21.3.2
is not enough).org.graalvm.sdk:graal-sdk@21.3.0
org.graalvm.sdk:graal-sdk@20.3.10
,@21.3.6
,@22.3.2
This issue should be addressed by utilizing a patched version from the same minor tree:
21.3.6
.