Vulnerable dependency: resteasy-jaxrs-3.1.4.Final.jar

Question

ylcstarseeker opened this issue 4 years ago · 2 comments

resteasy-jaxrs-3.1.4.Final.jar depended by openstack4j 3.1.0 has a known vulnerability:
https://issues.redhat.com/browse/RESTEASY-1704?_sscc=t

Answer 1 · 2020-07-13T06:01:26.000Z

Hello, any update on this issue?
Thanks

Answer 2 · 2020-07-15T07:40:03.000Z

@cosnina, this is addressed in fork openstack4j/openstack4j#63 and will be part of the next release.