Hello, I using camel bom in my project where all the dependency library are managed by the bom. For certain libraries, they are flag out by sonar which have CVE issues, I need to update them to higher version which the cve is fix, is that any guidelines which compatible version can be used? e.g, for camel 3.4.x what the next version of cxf can be use?
Thanks. Regards, CC
