Re: ossindex-maven-plugin and build issue
Am 15.11.20 um 14:21 schrieb sahy...@fileaffairs.de: Can we specify a different JUnit version e.g. JUnit 5 or isn't that supported by our build environment? Good idea, but it would require to port all tests to junit5. There is an option to run junit4 test with junit5, but it automatically adds the problematic junit4 dependency. :-( I'm going to switch the trunk to junit5 if nobody objects. It shouldn't be complicated but some work to do. Andreas Am Sonntag, den 15.11.2020, 14:19 +0100 schrieb Andreas Lehmkuehler: Hi, the ossindex-maven-plugin triggers the recent build issue. It complains about the junit plugin because of a vulnerability see CVE-2020-15250. Any idea on how to solve that, without deactivating the plugin? Andreas https://nvd.nist.gov/vuln/detail/CVE-2020-15250 - To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org - To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org - To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org
Re: ossindex-maven-plugin and build issue
Can we specify a different JUnit version e.g. JUnit 5 or isn't that supported by our build environment? Am Sonntag, den 15.11.2020, 14:19 +0100 schrieb Andreas Lehmkuehler: > Hi, > > the ossindex-maven-plugin triggers the recent build issue. It > complains about > the junit plugin because of a vulnerability see CVE-2020-15250. > > Any idea on how to solve that, without deactivating the plugin? > > Andreas > > https://nvd.nist.gov/vuln/detail/CVE-2020-15250 > > - > To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org > For additional commands, e-mail: dev-h...@pdfbox.apache.org > - To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org
ossindex-maven-plugin and build issue
Hi, the ossindex-maven-plugin triggers the recent build issue. It complains about the junit plugin because of a vulnerability see CVE-2020-15250. Any idea on how to solve that, without deactivating the plugin? Andreas https://nvd.nist.gov/vuln/detail/CVE-2020-15250 - To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org For additional commands, e-mail: dev-h...@pdfbox.apache.org
