This repository has been archived by the owner on May 10, 2022. It is now read-only.

There is a vulnerability in guava 28.1-jre,upgrade recommended #146

Open

QiAnXinCodeSafe opened this issue Dec 25, 2020 · 0 comments

QiAnXinCodeSafe commented Dec 25, 2020

pegasus-java-client/pom.xml

Lines 63 to 67 in d427496

    
           <dependency> 
        
             <groupId>com.google.guava</groupId> 
        
             <artifactId>guava</artifactId> 
        
             <version>28.1-jre</version> 
        
           </dependency>

Recommended upgrade version：
30.0-jre

liangyuanpeng mentioned this issue

build(deps): bump guava from 28.1-jre to 29.0-jre #152

Open

foreverneverer mentioned this issue

build: require add issue reference in description using github action #173

Merged

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.