Details
-
Dependency upgrade
-
Status: Closed
-
Minor
-
Resolution: Won't Fix
-
3.4.3
-
None
-
None
Description
There's a vulnerability report for the jsoup <= 1.14.2 https://www.cvedetails.com/cve/CVE-2021-37714
jsoup:1.12.1 is used by wagon-http-shared:3.4.3, that triggers security bots alerts.
Please could you update the dependency and release a new version?