Bump to the latest Guava version to avoid CVEs and be up to date

[casewalker]

Upgrades past CVE-2023-2976 and CVE-2020-8908 to the latest Guava version.

[casewalker]

@mikesamuel If you could take a look, that would be greatly appreciated.

[melloware]

+1

[maxibarros]

+1 @mikesamuel

[subbudvk]

I think dependabot can create such PR. Saw one for another version - #284. Also there is some PR on removing the dependency #272

[casewalker]

@subbudvk If you read the comments on the PR you linked and check the Guava link I shared above, you'll see that the Dependabot PR is trying to upgrade from one vulnerable version to another vulnerable version.

[casewalker]

@jmanico Hello, I saw that you recently reviewed a PR in this repo. I am trying to have some CVEs addressed by bumping to the latest version of Guava. If you could review this PR, that would be greatly appreciated.

Thanks!

[melloware]

@casewalker this can be closed now that #272 has been merged

[mikesamuel]

This is obviated by 3b6cc1b which removes the guava dependency entirely

[casewalker]

Beautiful, thanks for addressing the underlying issue!!