[ https://issues.apache.org/jira/browse/SLING-12105?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Eric Norman resolved SLING-12105. --------------------------------- Resolution: Fixed Merged PR at: [{{0d35fa4}}|https://github.com/apache/sling-org-apache-sling-jcr-jackrabbit-accessmanager/commit/0d35fa49b16934e7bad8736d7d49daa4e8493cfd] > Bump dependencies to the earliest versions without known vulnerabilities > ------------------------------------------------------------------------ > > Key: SLING-12105 > URL: https://issues.apache.org/jira/browse/SLING-12105 > Project: Sling > Issue Type: Improvement > Reporter: Eric Norman > Assignee: Eric Norman > Priority: Major > Fix For: JCR Jackrabbit Access Manager 4.0.0 > > > Mostly to keep tooling from flagging these as "vulnerabilities from > dependencies" > # bump org.apache.sling.api to 2.25.4 > # bump org.apache.sling.jcr.base to 3.1.12 -- This message was sent by Atlassian Jira (v8.20.10#820010)