[jira] [Created] (AMQ-7103) Dependency updates flagged by OWASP Dependency Check

Christopher L. Shannon (JIRA) Thu, 15 Nov 2018 11:22:56 -0800

Christopher L. Shannon created AMQ-7103:
-------------------------------------------


             Summary: Dependency updates flagged by OWASP Dependency Check
                 Key: AMQ-7103
                 URL: https://issues.apache.org/jira/browse/AMQ-7103
             Project: ActiveMQ
          Issue Type: Improvement
    Affects Versions: 5.15.7
            Reporter: Christopher L. Shannon
             Fix For: 5.15.9


Original text from Jira issue from [~ABakerIII] - 

 

Please determine if
 # The 458 vulnerabilities are true vulnerabilities or false positives
 # Are there newer versions of the vulnerable libraries available
 # Will updating the pom to use the new libraries break the build/test or not
 # If updates some do break the build/test, please update the code to work.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

[jira] [Created] (AMQ-7103) Dependency updates flagged by OWASP Dependency Check

Reply via email to