search

weibocom / motan

A cross-language remote procedure call(RPC) framework for rapid development of high performance distributed services.
Other
5.89k stars 1.78k forks source link

fix(sec): upgrade org.springframework:spring-web to 5.2.15.RELEASE #1011

Closed zhoumengyks closed 2 years ago

zhoumengyks commented 2 years ago

What happened?

There are 2 security vulnerabilities found in org.springframework:spring-web 5.2.7.RELEASE

What did I do?

Upgrade org.springframework:spring-web from 5.2.7.RELEASE to 5.2.15.RELEASE for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

rayzhang0603 commented 2 years ago

Thanks for the feedback, it's dealt with in another PR as some tweaks are needed