Open sethb3214 opened 5 years ago
Dependency vulnerability analysis shows that there are three dependencies in this project that appear to contain known CVEs. The dependencies are
Here are the Bouncy Castle CVEs:
Here are the Apache CXF Transport CVEs:
Here is the WS Security CVE:
While these libraries don't appear to be used by the Java FuelSDK, is it possible to upgrade these dependencies to a more secure version?
Dependency vulnerability analysis shows that there are three dependencies in this project that appear to contain known CVEs. The dependencies are
Here are the Bouncy Castle CVEs:
Here are the Apache CXF Transport CVEs:
Here is the WS Security CVE:
While these libraries don't appear to be used by the Java FuelSDK, is it possible to upgrade these dependencies to a more secure version?