Details
Description
Hello,
jackrabbit depends on commons-httpclient. https://hc.apache.org/httpclient-3.x/
This library has reached EOL status four years ago and was replaced by Apache httpcomponents-client:
https://hc.apache.org/httpcomponents-client-ga/index.html
commons-httpclient was affected by multiple security issues in the past but is no longer supported by its upstream developers. This makes it difficult for Linux distributions to provide any support for applications and libraries which still depend on commons-httpclient.
Please consider to make the switch to httpcomponents-client
Attachments
Issue Links
- duplicates
-
JCR-2406 Upgrade httpclient dependency to 4.x
- Closed