directmemory
directmemory copied to clipboard
apache
Mirror of Apache DirectMemory
[](https://infosecwriteups.com/want-to-take-over-the-java-ecosystem-all-you-need-is-a-mitm-1fc329d898fb) --- This is a security fix for a high severity vulnerability in your [Apache Maven](https://maven.apache.org/) `pom.xml` file(s). The build files indicate that this project is resolving dependencies over HTTP...
Bumps [h2](https://github.com/h2database/h2database) from 1.3.172 to 2.2.220. Release notes Sourced from h2's releases. Version 2.2.220 Changes since 2.1.214 release: ... (truncated) Commits See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [spring-core](https://github.com/spring-projects/spring-framework) from 3.2.3.RELEASE to 5.2.24.RELEASE. Release notes Sourced from spring-core's releases. v5.2.24.RELEASE :star: New Features Limit string concatenation in SpEL expressions #30332 Limit SpEL expression length #30330 Disable variable...
Bumps tomcat-embed-core from 7.0.41 to 7.0.107. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps log4j-core from 2.0-beta8 to 2.17.1. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps [snakeyaml](https://bitbucket.org/snakeyaml/snakeyaml) from 1.10 to 1.32. Commits b8239ec Add warning about untrusted data on landing page 2853420 Merge remote-tracking branch 'origin/master' 4b3d996 Merged master into format-2 4081e08 Reformat with IntelliJ...
Bumps [protobuf-java](https://github.com/protocolbuffers/protobuf) from 2.5.0 to 3.16.3. Release notes Sourced from protobuf-java's releases. Protobuf Release v3.16.3 Java Refactoring java full runtime to reuse sub-message builders and prepare to migrate parsing logic...
Bumps [async-http-client](https://github.com/AsyncHttpClient/async-http-client) from 1.7.17 to 1.9.0. Commits 63a708f [maven-release-plugin] prepare release async-http-client-1.9.0 a6e2fec Change web socket package into ws f2f5c8d [maven-release-plugin] prepare for next development iteration a064764 [maven-release-plugin] prepare release...
Bumps solr-core from 3.6.2 to 8.8.2. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...
Bumps `solr.version` from 3.6.2 to 8.2.0. Updates `solr-core` from 3.6.2 to 8.2.0 Updates `solr-test-framework` from 3.6.2 to 8.2.0 Dependabot will resolve any conflicts with this PR as long as you...