java-faker icon indicating copy to clipboard operation
java-faker copied to clipboard
verified publisher icon DiUS

updating snakeyml version to 1.31 to fix CVE-2022-25857

Open paryushjain opened this issue 3 years ago • 3 comments

paryushjain avatar Sep 02 '22 11:09 paryushjain

Please use Datafaker.net instead

bodiam avatar Sep 02 '22 11:09 bodiam

Please use Datafaker.net instead

Thanks for the suggestion but currently I cannot migrate to a new library. But will use this in my next projects.

paryushjain avatar Sep 03 '22 16:09 paryushjain

Please use Datafaker.net instead

Thanks for the suggestion but currently I cannot migrate to a new library. But will use this in my next projects.

Not questioning your constraints, but Datafaker is 99% compatible with Javafaker, the only thing which requires changing are the imports. Also, there are more issues and cves with Javafaker than just this one, so using Javafaker isn't without risk.

bodiam avatar Sep 03 '22 22:09 bodiam