Uploaded image for project: 'Keikai'
  1. Keikai
  2. KEIKAI-593

keikai-poi depends on several dependencies with known vulnerabilities

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Fixed
    • Icon: Normal Normal
    • 5.10.0
    • 5.9.0
    • None
    • Security Level: Jimmy
    • None

      Steps to Reproduce

      check its pom.xml

      Current Result

      https://mvnrepository.com/artifact/dom4j/dom4j 1.6.1
      (latest version 2.1.3: https://mvnrepository.com/artifact/org.dom4j/dom4j)

      https://mvnrepository.com/artifact/log4j/log4j 1.2.13
      (latest version: 2.17.2 available under
      https://mvnrepository.com/artifact/org.apache.logging.log4j/log4j-core)

      https://mvnrepository.com/artifact/junit/junit 4.8.1
      (even though it's optional it doesn't hurt to upgrade to 4.13.2)

      Expected Result

      upgrade to the higher compatible version

            jumperchen jumperchen
            hawk hawk
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: