Skip to content

[Bug] upgrade commons-validator as v1.6 depends on commons-beanutils 1.92 which has a CVE #756

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
2 tasks done
pjfanning opened this issue Feb 5, 2022 · 1 comment
Closed
2 tasks done

[Bug] upgrade commons-validator as v1.6 depends on commons-beanutils 1.92 which has a CVE #756

pjfanning opened this issue Feb 5, 2022 · 1 comment
Labels
bug Something isn't working
Milestone
1.4.0

Comments

@pjfanning
Copy link
Contributor

Search before asking

  • I had searched in the issues and found no similar issues.

Environment

Other

EventMesh version

1.3.0

What happened

n/a

How to reproduce

n/a

Debug logs

No response

Are you willing to submit PR?

  • Yes I am willing to submit a PR!
@pjfanning pjfanning added the bug Something isn't working label Feb 5, 2022
@pjfanning
Copy link
Contributor Author

this would be fixed by upgrading to latest rocketmq version - #755

@xwm1992 xwm1992 added this to the 1.4.0 milestone Feb 9, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
1.4.0
Development

No branches or pull requests
2 participants
@pjfanning @xwm1992