[Snyk] Fix for 1 vulnerabilities - Githubissues

salesforce / Argus

Time series monitoring and alerting platform.

BSD 3-Clause "New" or "Revised" License

505 stars 145 forks source link

[Snyk] Fix for 1 vulnerabilities #1076

Open snyk-bot opened 4 years ago

snyk-bot commented 4 years ago

Snyk has created this PR to fix one or more vulnerable packages in the maven dependencies of this project.

Changes included in this PR

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- ArgusCore/pom.xml

Vulnerabilities that will be fixed

With an upgrade:

ArgusCore/pom.xml
- org.quartz-scheduler:quartz@2.2.2 > org.quartz-scheduler:quartz@2.3.2
  - XML External Entity (XXE) Injection

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:

🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic

salesforce-cla[bot] commented 4 years ago

Thanks for the contribution! Before we can merge this, we need @snyk-bot to sign the Salesforce.com Contributor License Agreement.