JLLeitschuh commented on PR #12:
URL: https://github.com/apache/geronimo-batchee/pull/12#issuecomment-1320330093
Sounds good, thank you all for the thorough assessment of the situation. I
really appreciate it!
--
This is an automated message from the Apache Git Service.
To respond to the
JLLeitschuh commented on PR #12:
URL: https://github.com/apache/geronimo-batchee/pull/12#issuecomment-1319372016
If the zip archive could come from anywhere, then it would be appropriate to
issue a CVE here. Is there a discussion inside the ASF about this, or does one
need to be kicked
JLLeitschuh commented on PR #12:
URL: https://github.com/apache/geronimo-batchee/pull/12#issuecomment-1306389721
Friendly ping: @asfsecurity
Does this need a CVE assigned to it?
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on
JLLeitschuh commented on PR #12:
URL: https://github.com/apache/geronimo-batchee/pull/12#issuecomment-1303818287
Hi @rmannibucau,
This pull request, along with 164 similar pull request, was automatically
generated at-scale to fix this vulnerability across the OSS java ecosystem.