Bump org.springframework.kafka:spring-kafka-bom from 3.3.0 to 3.3.1 #4956
Annotations
1 warning and 1 notice
qodana
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
Vulnerable declared dependency:
vividus-plugin-kafka/build.gradle#L14
Provides transitive vulnerable dependency maven:io.netty:netty-common:4.1.105.Final
* [GHSA-xq3w-v528-46rv](https://osv.dev/vulnerability/GHSA-xq3w-v528-46rv) 5.5 Denial of Service attack on windows app using netty
Results powered by [OSV](https://osv.dev/)
|