Steve Abbott Jr

Results 5 comments of Steve Abbott Jr

Unable to cover Getter and Setter of any Abstract class or derived class having abstract class extended

I'm having the same problem, but in JDK 8 (OpenJDK 1.8.0_212). Any help would be appreciated, or maybe it can help get to the bottom of a problem. Thanks! I'm...

Cache Save/Restore is not working between GitHub Runner and Container, even with the same absolute path.

Thank you for digging in further and finding a solution! I haven't been able to test it yet, but it seems plausible. I would have thought `enableCrossOsArchive: 'true'` would have...

Fixes #894. Remove outdated commons-lang and commons-configuration dependencies with problematic CVEs.

Ah, I just saw this [comment](https://github.com/ESAPI/esapi-java-legacy/issues/872#issuecomment-2669411905) in #872, which tells me that this is unlikely to get approved as-is if there are concerns about commons-configuration2. I'll leave it for now,...

Fixes #894. Remove outdated commons-lang and commons-configuration dependencies with problematic CVEs.

For what it's worth, I recognize that [CVE-2025-48924](https://www.cve.org/CVERecord?id=CVE-2025-48924) is related to `ClassUtils.getClass`, which isn't used directly in ESAPI. So, this may all be completely unnecessary. My concern was only increased...

Fixes #894. Remove outdated commons-lang and commons-configuration dependencies with problematic CVEs.

It appears that commons-configuration does use `ClassUtils.getClass`, and it seems possible that someone could run into it if their configuration was set up a certain way. I think this would...