Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update ESAPI pom to use latest version of AntiSamy (1.7.6) #847

Closed
kwwall opened this issue Jul 7, 2024 · 1 comment
Closed

Update ESAPI pom to use latest version of AntiSamy (1.7.6) #847

kwwall opened this issue Jul 7, 2024 · 1 comment
Assignees
@kwwall
Labels
Build-Maven enhancement

Comments

@kwwall
Copy link
Contributor

kwwall commented Jul 7, 2024

A new version (1.7.6) of AntiSamy was just released. Update pom to use it and update other dependencies and plugins to latest compatible version as well.

Note since there were no vulnerabilities addressed in AntiSamy and this change is unlikely to affect ESAPI users, I'm considering this an enhancement rather than a bug.
@kwwall kwwall self-assigned this Jul 7, 2024
kwwall added a commit that referenced this issue Jul 14, 2024
@kwwall
Pom updates to address issue #847 (#848)
b610633 
* Close GitHub issue #847.
1. Update pom to latest version of compatible dependencies and plugins.
2. Remove commons-io:commons-io:2.15.1 previously needed for convergence as Commons FileUpload no longer requires it and AntiSamy 1.7.5 now uses 2.15.1. So we no longer need to explicitly load it for convergence to succeed.

* Minor documentation tweaks to esapi.tld.
@kwwall
Copy link
Contributor Author

kwwall commented Jul 14, 2024

Closed via PR #848.

@kwwall kwwall closed this as completed Jul 14, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@kwwall kwwall

Labels
Build-Maven enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@kwwall