sofa-jarslink icon indicating copy to clipboard operation
sofa-jarslink copied to clipboard

Published 20 hours ago verified publisher icon sofastack

fix(sec): upgrade commons-io:commons-io to 2.7

Open chncaption opened this issue 2 years ago • 1 comments

What happened?

There are 1 security vulnerabilities found in commons-io:commons-io 2.5

What did I do?

Upgrade commons-io:commons-io from 2.5 to 2.7 for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

chncaption avatar Nov 02 '22 14:11 chncaption