spring-data-dynamodb icon indicating copy to clipboard operation
spring-data-dynamodb copied to clipboard

Published 20 hours ago verified publisher icon boostchicken

Vulnerability with cdi-api dependency

Open anirudhts opened this issue 4 years ago • 0 comments

Hi, we currently use the latest version of your spring data dynamo-db (5.2.5) as one of our maven dependencies, and it has reported a vulnerability CVE-2014-8122 with cdi-api jar which is one of your dependencies. Could you look at an alternative and fix this?

Specifications

  • Spring Data DynamoDB Version: 5.2.5
  • Spring Data Version:2.3.3.RELEASE
  • AWS SDK Version:1.11.859
  • Java Version: Java 8
  • Platform Details: Mac OS

anirudhts avatar Sep 20 '20 09:09 anirudhts