Vulnerabilities in Guava
Closed this issue · 1 comments
mrnolte commented
My IDE complains that the used Guava version
<dependency>
<groupId>com.google.guava</groupId>
<artifactId>guava</artifactId>
<version>31.1-jre</version>
</dependency>
introduces a vulnerability. I remember that it was a hassle to change the guava version but it still might be important to have a look at this.
ignazio1977 commented
Updating Guava mainly revolved around making sure the version shipped with Protege was still good enough to use - I think we solved the issue properly, so it should just be a matter of updating to the latest to avoid security issues.
It will take a bit - there's a lot of dependencies that need updating, not just Guava.