<rant> I just excluded joda-time because of this: CVE-2024-23080 https://nvd.nist.gov/vuln/detail/CVE-2024-23080
This is an NPE in joda-time version 2.12.5. That's two versions before the current...is it actually still in there. And more importantly, an NPE is not a CVE in Java. People, please. And please, oh, please don't tell me that the llms are responsible for this! I'm hoping this is a post report echo artifact and not the cause of this report. https://gist.github.com/LLM4IG/6614bfa658295d7af07a6d37e06db27f </rant> ---------- Forwarded message --------- From: Tim Allison <[email protected]> Date: Thu, Apr 11, 2024 at 12:36 PM Subject: [apache/tika] Run failed: main jdk11 build - main (87e84f7) To: apache/tika <[email protected]> Cc: Ci activity <[email protected]> [image: GitHub] [apache/tika] main jdk11 build workflow run main jdk11 build: All jobs have failed View workflow run <https://github.com/apache/tika/actions/runs/8650122821> [image: build (11)] *main jdk11 build* / build (11) Failed in 5 minutes and 34 seconds [image: annotations for main jdk11 build / build (11)] 3 <https://github.com/apache/tika/actions/runs/8650122821> — You are receiving this because you are subscribed to this thread. Manage your GitHub Actions notifications <https://github.com/settings/notifications> GitHub, Inc. ・88 Colin P Kelly Jr Street ・San Francisco, CA 94107
