The junit's version in pom.xml is affeted by vulnerability like described in the follow link: https://mvnrepository.com/artifact/de.jollyday/jollyday/0.5.10.
I see that it 's a vulnerability only in test scope, so when i made a build for production environment I think that there would be no problem.
But do you already known when you will release a new stable version of jollyday with an junit 's version without vulnerability?
Hi,
The junit's version in pom.xml is affeted by vulnerability like described in the follow link: https://mvnrepository.com/artifact/de.jollyday/jollyday/0.5.10. I see that it 's a vulnerability only in test scope, so when i made a build for production environment I think that there would be no problem. But do you already known when you will release a new stable version of jollyday with an junit 's version without vulnerability?
Thanks, Kevin