It seems that only direct dependencies of finagle with vulnerabilities are updated during release. This is unfortunate since the longer release cadence several dependencies have newer versions. This can cause problems when using other components of those dependenceis. For example with netty when using other parts (e.g. netty-codec) the current versions used by finagle has vulnerabilities. Upgrading causes problems when finagle is not compatible with newer versions. Please include dependency upgrades during the release process.
It seems that only direct dependencies of finagle with vulnerabilities are updated during release. This is unfortunate since the longer release cadence several dependencies have newer versions. This can cause problems when using other components of those dependenceis. For example with netty when using other parts (e.g. netty-codec) the current versions used by finagle has vulnerabilities. Upgrading causes problems when finagle is not compatible with newer versions. Please include dependency upgrades during the release process.