Vulnerabilities in Guava

[mrnolte]

My IDE complains that the used Guava version

<dependency>
    <groupId>com.google.guava</groupId>
    <artifactId>guava</artifactId>
    <version>31.1-jre</version>
</dependency>

introduces a vulnerability. I remember that it was a hassle to change the guava version but it still might be important to have a look at this.

[ignazio1977]

Updating Guava mainly revolved around making sure the version shipped with Protege was still good enough to use - I think we solved the issue properly, so it should just be a matter of updating to the latest to avoid security issues.

It will take a bit - there's a lot of dependencies that need updating, not just Guava.