[
https://issues.apache.org/jira/browse/NIFI-10060?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Pierre Villard resolved NIFI-10060.
-----------------------------------
Resolution: Feedback Received
Apache NiFi 1.x is no longer maintained and no new release is planned on the
1.x release line. Marking as resolved as part of a cleanup operation. Please
open a new one with an updated description if this is still relevant for NiFi
2.x.
> Fix Issues Found In Dependency Checker
> --------------------------------------
>
> Key: NIFI-10060
> URL: https://issues.apache.org/jira/browse/NIFI-10060
> Project: Apache NiFi
> Issue Type: Bug
> Affects Versions: 1.16.1, 1.16.2
> Reporter: Mike R
> Priority: Major
>
> Dependencychecker by OWASP shows the following dependencies that have CVEs
> against them and are showing as vulnerable when I implement NiFi in my
> environment when it gets scanned. Are there any plans to upgrade any of the
> following:
> protobuf-java-3.19.1.jar
> nifi-xml-processing-1.16.2.jar
> google-http-client-gson-1.140.1.jar
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
