search

slipset / deps-deploy

deploy your stuff
Eclipse Public License 1.0
148 stars 31 forks source link

CVE-2022-31159 via Amazon AWS SDK dependency #56

Closed pmonks closed 11 months ago

pmonks commented 1 year ago

CVE-2022-31159 affects deps-deploy, via the com.amazonaws/aws-java-sdk-s3 v1.12.49 dependency.

Even without this CVE, v2.0 of the AWS Java SDK was released over 5 years ago, so it's probably time to upgrade deps-deploy to the latest & greatest.