[
https://issues.apache.org/jira/browse/SLING-11623?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17620081#comment-17620081
]
Konrad Windszus edited comment on SLING-11623 at 10/19/22 7:58 AM:
-------------------------------------------------------------------
I think we discussed this several times and just increasing the dependency
versions to prevent false positives of security scanners for no reason
restricts compatibility with older distributions. In OSGi world only the run
time matters!
was (Author: kwin):
I think we discussed this several times and just increasing the dependencies to
prevent false positives of security scanners for no reason restricts
compatibility with older distributions. In OSGi world only the run time matters!
> update commons text
> -------------------
>
> Key: SLING-11623
> URL: https://issues.apache.org/jira/browse/SLING-11623
> Project: Sling
> Issue Type: Improvement
> Components: Commons, Feature Model, Maven Plugins and Archetypes,
> XSS Protection API
> Affects Versions: XSS Protection API 2.3.0, slingfeature-maven-plugin
> 1.6.8, Feature Model Launcher 1.2.0, Rewriter 1.3.4
> Reporter: Joerg Hoh
> Assignee: Joerg Hoh
> Priority: Major
> Fix For: slingfeature-maven-plugin 1.6.10, Feature Model Launcher
> 1.2.2, Rewriter 1.3.6, XSS Protection API 2.3.2
>
> Time Spent: 40m
> Remaining Estimate: 0h
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
