Closed elefeint closed 2 years ago
2021.0.2 will be released on April 19, 2022. GCP and users can override the version in the meantime.
Why the mvnrepository not have version 2021.0.2 and when can we use version 2021.0.2? https://mvnrepository.com/artifact/org.springframework.cloud/spring-cloud-dependencies
We had to delay the release. BTW mvnrepository is an index and will have delays
we use Spring Cloud train release, 2021.0.1. Can we use spring cloud function: 3.1.7 to fix this vulnerability(CVE-2022-22963)
spring-cloud-function:3.2.3
addresses CVE-2022-22963. The latest Spring Cloud train release, 2021.0.1, was usingspring-cloud-function:3.2.2
.Will there be a release of Spring Cloud 2021.0.x train that pulls in the fixed version of Function, or should we be overriding the Spring Cloud Function version manually in Spring Cloud GCP?