Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Vulnerabilities reported on the mvnrepository website #9

Open
2 tasks
MikeWarren2014 opened this issue Oct 2, 2023 · 3 comments
Open
2 tasks

Vulnerabilities reported on the mvnrepository website #9

MikeWarren2014 opened this issue Oct 2, 2023 · 3 comments

Comments

@MikeWarren2014
Copy link

MikeWarren2014 commented Oct 2, 2023
edited
Loading

I'm impressed by the simplicity and ease of use of this, and was about to download this, via the mvnrepository website, but faced the following vulnerability warnings :

Please look into this
@MikeWarren2014
Copy link
Author

UPDATE: I see one of the vulnerabilities fixed on this repository, but not in there...

I wonder if mvnrepository will notice the fix if you update the version...

@mxro
Copy link
Collaborator

mxro commented Oct 5, 2023

Thank you for raising this issue!

Indeed the workflow for publishing this to Maven central does currently not exist. Will add it to my to do list to add this along the lines of https://github.com/javadelight/delight-nashorn-sandbox/blob/master/.github/workflows/publish.yml

With that in place, the newest version should always be the published one!

@mxro
Copy link
Collaborator

mxro commented Oct 5, 2023

All done - new version 0.0.6 published! And will be easy to publish any changes you propose via PRs to Maven central as well.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mxro @MikeWarren2014