azure-sdk-for-java
[Snyk] Security upgrade org.springframework.cloud:spring-cloud-stream from 4.1.3 to 4.2.1
#499
Open
Open
[Snyk] Security upgrade org.springframework.cloud:spring-cloud-stream from 4.1.3 to 4.2.1 #499
snyk-io
wants to merge
1 commit into
main
from
snyk-fix-6e6db343c958cb55f92787b87a23f88f
fix: sdk/spring/spring-cloud-azure-stream-binder-servicebus-core/pom.…
c4f20f35
semanticdiff-com37 days ago (edited 37 days ago)
Review changes with
Changed Files
| File | Status |
|---|---|
 sdk/spring/spring-cloud-azure-stream-binder-servicebus-core/pom.xml |
 0% smaller |
snyk-io37 days ago
⛔ Snyk checks have failed. 3 issues have been found so far.
| Icon | Severity | Issues |
|---|---|---|
 |
Critical | 0 |
 |
High | 3 |
 |
Medium | 0 |
 |
Low | 0 |
⛔ security/snyk check is complete. 3 issues have been found. (View Details)
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.
Login to write a write a comment.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Snyk has created this PR to fix 3 vulnerabilities in the maven dependencies of this project.
Snyk changed the following file(s):
sdk/spring/spring-cloud-azure-stream-binder-servicebus-core/pom.xmlVulnerabilities that will be fixed with an upgrade:
SNYK-JAVA-CHQOSLOGBACK-8539865
4.1.3->4.2.1No Path FoundNo Known ExploitSNYK-JAVA-CHQOSLOGBACK-8539866
4.1.3->4.2.1No Path FoundNo Known ExploitSNYK-JAVA-CHQOSLOGBACK-8539867
4.1.3->4.2.1No Path FoundNo Known ExploitImportant
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic
Learn how to fix vulnerabilities with free interactive lessons:
🦉 Server-side Request Forgery (SSRF)