[
https://issues.apache.org/jira/browse/SLING-12105?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Eric Norman resolved SLING-12105.
---------------------------------
Resolution: Fixed
Merged PR at:
[{{0d35fa4}}|https://github.com/apache/sling-org-apache-sling-jcr-jackrabbit-accessmanager/commit/0d35fa49b16934e7bad8736d7d49daa4e8493cfd]
> Bump dependencies to the earliest versions without known vulnerabilities
> ------------------------------------------------------------------------
>
> Key: SLING-12105
> URL: https://issues.apache.org/jira/browse/SLING-12105
> Project: Sling
> Issue Type: Improvement
> Reporter: Eric Norman
> Assignee: Eric Norman
> Priority: Major
> Fix For: JCR Jackrabbit Access Manager 4.0.0
>
>
> Mostly to keep tooling from flagging these as "vulnerabilities from
> dependencies"
> # bump org.apache.sling.api to 2.25.4
> # bump org.apache.sling.jcr.base to 3.1.12
--
This message was sent by Atlassian Jira
(v8.20.10#820010)