[jira] [Resolved] (SLING-12105) Bump dependencies to the earliest versions without known vulnerabilities

Eric Norman (Jira) Thu, 19 Oct 2023 13:01:06 -0700


     [ 
https://issues.apache.org/jira/browse/SLING-12105?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Eric Norman resolved SLING-12105.
---------------------------------
    Resolution: Fixed

Merged PR at:  
[{{0d35fa4}}|https://github.com/apache/sling-org-apache-sling-jcr-jackrabbit-accessmanager/commit/0d35fa49b16934e7bad8736d7d49daa4e8493cfd]

> Bump dependencies to the earliest versions without known vulnerabilities
> ------------------------------------------------------------------------
>
>                 Key: SLING-12105
>                 URL: https://issues.apache.org/jira/browse/SLING-12105
>             Project: Sling
>          Issue Type: Improvement
>            Reporter: Eric Norman
>            Assignee: Eric Norman
>            Priority: Major
>             Fix For: JCR Jackrabbit Access Manager 4.0.0
>
>
> Mostly to keep tooling from flagging these as "vulnerabilities from 
> dependencies"
>  # bump org.apache.sling.api to 2.25.4
>  # bump org.apache.sling.jcr.base to 3.1.12



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

[jira] [Resolved] (SLING-12105) Bump dependencies to the earliest versions without known vulnerabilities

Reply via email to