Readability4J icon indicating copy to clipboard operation
Readability4J copied to clipboard

Published 20 hours ago verified publisher icon dankito

Bump major versions of dependencies required

Open kjeller opened this issue 1 year ago • 0 comments

Some of the dependency versions needs to be bumped major versions to avoid vulnerabilities.

Looking at a few on maven repository:

  • Jsoup 1.11.2: 2 direct vulnerabilities and multiple indirect ones
  • Jackson kotlin module 2.9.2: 66 indirect vulnerabilities
  • logback-core: 1 direct vulnerability

Because of major version bumps, source code changes might also be required.

kjeller avatar Jul 11 '23 04:07 kjeller