Hollow depends on org.apache.velocity:velocity:1.7
rydenius opened this issue · 1 comments
rydenius commented
The dependency on org.apache.velocity:velocity:1.7 introduces vulnerability to https://security.snyk.io/vuln/SNYK-JAVA-ORGAPACHEVELOCITY-3116414, ranked as a High impact.