creadur-rat icon indicating copy to clipboard operation
creadur-rat copied to clipboard
verified publisher icon apache

RAT-440: Upgrade Doxia to 2.0.0 to fix CVEs: CVE-2025-48924, CVE-2020-10683, CVE-2018-1000632, CVE-2020-13936 and CVE-2020-13959

Open guptas6est opened this issue 2 months ago • 7 comments

Summary

This PR upgrades Apache Doxia dependencies to version 2.0.0 to remediate several security vulnerabilities and improve the robustness of site report generation.

Fixed CVEs

Changes Made

  • Bumped Doxia-related dependencies to 2.0.0
  • Updated RatReportMojo.java to support the new xhtml5 parser and context structure in Doxia 2

Validation

  • Build and tests pass

guptas6est avatar Oct 09 '25 13:10 guptas6est