New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Address security vulnerbilities #222

Open

harshit-mehtaa opened this issue Jan 4, 2023 · 1 comment

harshit-mehtaa commented Jan 4, 2023

In a recent scan of the Copybara code base, we observed some security vulnerabilities.

They are mainly around 4 packages

Apache Tomcat 8.0.5
Apache HTTP client 4.5.5
Commons codec 1.11
Google gson 2.8.5

The recommended solutions for these are to upgrade to a specific version.

Author

harshit-mehtaa commented Jan 4, 2023

I can create a PR but will need some guidance as to where exactly the fix needs to be added.

This was referenced Jan 12, 2023

Handling security vulnerabilities #223

Closed

Handling security vulnerabilities #224

Open

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment