OpenAPI Tools OpenAPI Generator uses HTTP in various files
High severity
GitHub Reviewed
Published
May 24, 2022
to the GitHub Advisory Database
•
Updated Feb 2, 2023
Package
Affected versions
< 4.0.0-20190419.052012-560
Patched versions
4.0.0-20190419.052012-560
Description
Published by the National Vulnerability Database
Apr 22, 2019
Published to the GitHub Advisory Database
May 24, 2022
Reviewed
Nov 22, 2022
Last updated
Feb 2, 2023
OpenAPI Tools OpenAPI Generator before 4.0.0-20190419.052012-560 uses http:// URLs in various build.gradle, build.gradle.mustache, and build.sbt files, which may have caused insecurely resolved dependencies.
References