This repository has been archived by the owner on Feb 27, 2020. It is now read-only.

Bump spring-security-saml2-core version #87

Open

asgard-r opened this issue Feb 26, 2020 · 0 comments

asgard-r commented Feb 26, 2020

esapi v.2.1.0.1 contains CVE-2013-5960
spring-security-saml2-core already has a new v.1.0.10.RELEASE that uses esapi v.2.2.0.0

line 21 - https://github.com/spring-projects/spring-security-saml-dsl/blob/master/build.gradle
line 8 - https://github.com/spring-projects/spring-security-saml-dsl/blob/master/core/build.gradle

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.