[🐛 Bug]: Bump io.netty:netty-handler and com.google.guava:guava versions

[Satyadm123]

What happened?

io.netty:netty-handler and com.google.guava:guava are installed versions are getting flagged in vulnerability scans .
current versions io.netty:netty-handler 4.1.92.Final and 4.1.79.Final . required version 4.1.94.Final.

com.google.guava:guava installed version 31.1-jre and 31.1-android -required version 32.0.0.

Command used to start Selenium Grid with Docker

FROM selenium/standalone-firefox:dev

Relevant log output

Flagged as vulunerable packages.

Operating System

Ubuntu

Docker Selenium version (tag)

dev

[github-actions]

@Satyadm123, thank you for creating this issue. We will troubleshoot it as soon as we can.

---

Info for maintainers

Triage this issue by using labels.

If information is missing, add a helpful comment and then I-issue-template label.

If the issue is a question, add the I-question label.

If the issue is valid but there is no time to troubleshoot it, consider adding the help wanted label.

If the issue requires changes or fixes from an external project (e.g., ChromeDriver, GeckoDriver, MSEdgeDriver, W3C), add the applicable G-* label, and it will provide the correct link and auto-close the issue.

After troubleshooting the issue, please add the R-awaiting answer label.

Thank you!

[pradeep-rhythm]

We are also getting same in vulnerability scans.

[diemol]

Versions were bumped in the upstream Selenium repository. 4.12 should be released in a week or so.

[cloverdiego]

Hi, when will the new version with the fix be released? Thanks!

[github-actions]

This issue has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.