Hi Hanen, You can go through the security advisory docs[1] and apply the patches given. These fixes may be already available in these patches.
[1] https://docs.wso2.com/display/Security/Security+Advisories Thanks, Lakshman On Mon, May 22, 2017 at 1:28 PM, Hanen Ben Rhouma <[email protected]> wrote: > Hello guys, > > I scanned WSO2 IS with Dependency Check 1.4.5 and the report shows many > vulnerabilities, I raised a Jira > <https://wso2.org/jira/browse/IDENTITY-5960> for this concern, could you > please let me know if there is any upcoming actions like dependencies > version upgrade or libraries stack change. It's important to validate the > security level for IS in order to fully adopt the solution and sign a > support contract. > > > Regards, > Hanen > > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > > -- Lakshman Udayakantha WSO2 Inc. www.wso2.com lean.enterprise.middleware Mobile: *0717429601*
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
