dionisioC opened a new issue, #13315: URL: https://github.com/apache/skywalking/issues/13315
### Search before asking - [x] I had searched in the [issues](https://github.com/apache/skywalking/issues?q=is%3Aissue) and found no similar feature requirement. ### Description When using for example apm-toolkit-logback-1.x I see in https://mvnrepository.com/artifact/org.apache.skywalking/apm-toolkit-logback-1.x/9.4.0 that there is a vulnerability https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-6378 that seems to be fixed already in the dependency. I did a quick try updating the dependencies and the tests pass, but as I am not an expert, not sure if something might break. If it is correct I can update the dependencies of the whole project or just apm-toolkit-logback-1.x. If this is not as simple as I think, please close the issue and accept my apologies. ### Use case The vulnerability disappears ### Related issues I have not see any related issues ### Are you willing to submit a pull request to implement this on your own? - [x] Yes I am willing to submit a pull request on my own! ### Code of Conduct - [x] I agree to follow this project's [Code of Conduct](https://www.apache.org/foundation/policies/conduct) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: notifications-unsubscr...@skywalking.apache.org.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
