Hi all, I noticed that struts2-core 7.0.3 still ships with some dependencies that contain known vulnerabilities. From what I can see, the upstream projects have already addressed these CVEs in their latest releases.
Are there plans to update these dependencies in an upcoming Struts release? If helpful, I can share the specific dependencies and CVEs I found. [image: image.png] Thanks, Rahul
