Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Upgrade commons-io to 2.17.0 #393

Merged
merged 1 commit into from
Oct 9, 2024
Merged

Upgrade commons-io to 2.17.0 #393

merged 1 commit into from
Oct 9, 2024

Conversation

dankress
Copy link
Contributor

@dankress dankress commented Oct 8, 2024

  • All tests passed. If this feature is not already covered by the tests, I added new tests.
  • This pull request is on the dev branch.

apache commons: io has vuln until v2.14:
https://mvnrepository.com/artifact/commons-io/commons-io

Copy link

github-actions bot commented Oct 8, 2024

CLA Assistant Lite bot All contributors have signed the CLA ✍️ ✅

@dankress
Copy link
Contributor Author

dankress commented Oct 8, 2024

I have read the CLA Document and I hereby sign the CLA

@dankress
Copy link
Contributor Author

dankress commented Oct 8, 2024

recheck

@yahavi yahavi added improvement Automatically generated release notes safe to test Approve running integration tests on a pull request labels Oct 9, 2024
@github-actions github-actions bot removed the safe to test Approve running integration tests on a pull request label Oct 9, 2024
@yahavi yahavi changed the title upgrade commons-io to mitigate CVE-2024-47554 Upgrade commons-io to 2.17.0 Oct 9, 2024
Copy link
Member

@yahavi yahavi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for your contribution, @dankress!

@yahavi yahavi merged commit 0ed2cfd into jfrog:dev Oct 9, 2024
7 checks passed
@dankress dankress deleted the dev branch October 10, 2024 08:25
@yahavi
Copy link
Member

yahavi commented Oct 11, 2024

@dankress
Artifactory Java client version 2.19.1 has been released. This update includes the specified change.
Feel free to reach out if you need any further assistance.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
improvement Automatically generated release notes
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants