Uploaded image for project: 'PDFBox'
  1. PDFBox
  2. PDFBOX-4281

Replace Apache Wink dependency

    XMLWordPrintableJSON

Details

    • Task
    • Status: Closed
    • Major
    • Resolution: Fixed
    • 2.0.11
    • 2.0.12, 3.0.0 PDFBox
    • Signing
    • None

    Description

      I tried this new plugin
      https://sonatype.github.io/ossindex-maven/maven-plugin/
      and found that our dependency Apache Wink depends on a Spring version with a vulnerability. We use Apache Wink to create a mock http server. Apache Wink has been retired. However we need only a single class so I'll add that one. (I also tried to find other mock http servers, one had issues, another needed a com.sun.* class, another was too complex).

      Attachments

        Activity

          People

            tilman Tilman Hausherr
            tilman Tilman Hausherr
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: