Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[MNG-7513] Address commons-io_commons-io vulnerability found in maven… #771

Merged
merged 1 commit into from
Jul 18, 2022

Conversation

michael-o
Copy link
Member

… latest version

We can safely remove Commons IO altogether because in no direct or transtive
usecase it is used at compile time or runtime.

This closes #771

Following this checklist to help us incorporate your
contribution quickly and easily:

  • Make sure there is a JIRA issue filed
    for the change (usually before you start working on it). Trivial changes like typos do not
    require a JIRA issue. Your pull request should address just this issue, without
    pulling in other changes.
  • Each commit in the pull request should have a meaningful subject line and body.
  • Format the pull request title like [MNG-XXX] SUMMARY, where you replace MNG-XXX
    and SUMMARY with the appropriate JIRA issue. Best practice is to use the JIRA issue
    title in the pull request title and in the first line of the commit message.
  • Write a pull request description that is detailed enough to understand what the pull request does, how, and why.
  • Run mvn clean verify to make sure basic checks pass. A more thorough check will
    be performed on your pull request automatically.
  • You have run the Core IT successfully.

If your pull request is about ~20 lines of code you don't need to sign an
Individual Contributor License Agreement if you are unsure
please ask on the developers list.

To make clear that you license your contribution under
the Apache License Version 2.0, January 2004
you have to acknowledge this by using the following check-box.

@michael-o michael-o requested a review from slachiewicz July 18, 2022 13:10
pom.xml Show resolved Hide resolved
deutschebank-sync pushed a commit to deutschebank/maven that referenced this pull request Jul 18, 2022
… latest version

We can safely remove Commons IO altogether because in no direct or transtive
usecase it is used at compile time or runtime.

This closes apache#771
… latest version

We can safely remove Commons IO altogether because it is not used in any direct or
transitive usecase at compile time or runtime.

This closes #771
asfgit pushed a commit that referenced this pull request Jul 18, 2022
… latest version

We can safely remove Commons IO altogether because it is not used in any direct or
transitive usecase at compile time or runtime.

This closes #771
@asfgit asfgit closed this in efa9f0c Jul 18, 2022
@asfgit asfgit merged commit efa9f0c into master Jul 18, 2022
@michael-o michael-o deleted the MNG-7513 branch July 18, 2022 16:00
asfgit pushed a commit that referenced this pull request Dec 20, 2022
… latest version

We can safely remove Commons IO altogether because it is not used in any direct or
transitive usecase at compile time or runtime.

This closes #771
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants