hpvd commented on issue #18348: URL: https://github.com/apache/pulsar/issues/18348#issuecomment-1311830808
when looking through the security report again, I was wondering why there is netty version 3.10.6 listet with 3 named vulnerabilities. This is a version from the year 2016 (https://mvnrepository.com/artifact/io.netty/netty/3.10.6.Final) and as far I have seen, we have upgraded to >netty 4.1 the question: Can it also be a part of the problem that we only upgrade "some points of use" in the code when there is a notification about a security issue? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
