We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
The jarchivelib project is no longer maintained (see here), and contains some vulnerabilities due to using old library versions (specifically CVE-2024-25710 and CVE-2024-26308 in Apache Commons Compress 1.21).
These issues have been resolved in Compress4J, which is a fork of jarchivelib that is actively maintained and addresses these vulnerabilities.
I would recommend migrating to compress4j for future versions of the driver:core plugin in order to remove these vulnerabilities.
The text was updated successfully, but these errors were encountered:
No branches or pull requests
The jarchivelib project is no longer maintained (see here), and contains some vulnerabilities due to using old library versions (specifically CVE-2024-25710 and CVE-2024-26308 in Apache Commons Compress 1.21).
These issues have been resolved in Compress4J, which is a fork of jarchivelib that is actively maintained and addresses these vulnerabilities.
I would recommend migrating to compress4j for future versions of the driver:core plugin in order to remove these vulnerabilities.
The text was updated successfully, but these errors were encountered: