Vulnerabilities in Archi

Started by connor.dawson, December 01, 2023, 20:39:42 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

connor.dawson

December 01, 2023, 20:39:42 PM
Hi,

We scanned the archi repository with Mend SCA and found that there are vulnerabilities with the following libraries:
  • jackson-databind-2.9.jar
  • jdom2-2.0.6.jar
  • bootstrap-3.3.2.min.js
  • commons-io-2.6.jar
  • commons-beanutils-1.9.3.jar

Are there plans to update these libraries to fixed versions? Do these libraries pose security risks for Archi users if they are not fixed?

Thank you

Phil Beauvoir

#1
December 01, 2023, 20:42:36 PM
Hi, please report the issue here so we can take a look at it:

https://github.com/archimatetool/archi/issues
If you value and use Archi, please consider making a donation!
Ask your ArchiMate related questions to the ArchiMate Community's Discussion Board.
Print
Go Up Pages1
User actions