Skip to content
This repository has been archived by the owner on Feb 8, 2021. It is now read-only.

Update guava to 30.1 #43

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Update guava to 30.1 #43

wants to merge 1 commit into from

Conversation

Breee
Copy link
Collaborator

@Breee Breee commented Jan 25, 2021

There is a security alert for guava, everything below 24.1.1 contains a vulnerability
i.e. GHSA-mvr2-9pj6-7w5j

I propose to update the version directly to the latest release or at least 24.1.1.

This affects the fortify plugin. Can someone make sure, that this update does not break it?

We got a security alert that everything below 24.1.1 contains a vulnerability
i.e. GHSA-mvr2-9pj6-7w5j
@CLAassistant
Copy link

CLA assistant check
Thank you for your submission! We really appreciate it. Like many open source projects, we ask that you sign our Contributor License Agreement before we can accept your contribution.
You have signed the CLA already but the status is still pending? Let us recheck it.

@bradeac
Copy link
Collaborator

bradeac commented Jan 26, 2021

The dependency version update looks fine by me, but I'm not the right person to approve this merge request because there's no way I can test the fortify plugin.
@Dutzu can you reach out to the guys who are still maintaining this ? Also mentioning @markus2810

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants