jdeb [Snyk] Upgrade org.apache.maven:maven-plugin-api from 3.6.0 to 3.9.6

[Snyk] Upgrade org.apache.maven:maven-plugin-api from 3.6.0 to 3.9.6

Open tcurdt opened this issue 1 year ago • 0 comments

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade org.apache.maven:maven-plugin-api from 3.6.0 to 3.9.6.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

The recommended version is 18 versions ahead of your current version.
The recommended version was released a month ago, on 2023-11-28.

The recommended version fixes:

Issue	PriorityScore (*)	Exploit Maturity
Information Disclosure SNYK-JAVA-COMGOOGLEGUAVA-1015415	272/1000 Why? Proof of Concept exploit, CVSS 3.3	Proof of Concept
Creation of Temporary File in Directory with Insecure Permissions SNYK-JAVA-COMGOOGLEGUAVA-5710356	272/1000 Why? Proof of Concept exploit, CVSS 3.3	No Known Exploit
Command Injection SNYK-JAVA-ORGAPACHEMAVENSHARED-570592	272/1000 Why? Proof of Concept exploit, CVSS 3.3	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

Dec 25 '23 14:12 tcurdt

jdeb jdeb copied to clipboard

[Snyk] Upgrade org.apache.maven:maven-plugin-api from 3.6.0 to 3.9.6

Snyk has created this PR to upgrade org.apache.maven:maven-plugin-api from 3.6.0 to 3.9.6.

jdeb
jdeb copied to clipboard