Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Hit in the OSSINDEX #125

Closed
RickC37 opened this issue Jan 13, 2021 · 1 comment
Closed

Hit in the OSSINDEX #125

RickC37 opened this issue Jan 13, 2021 · 1 comment

Comments

@RickC37
Copy link

RickC37 commented Jan 13, 2021

In our vulnerability check we get a hit in OSSINDEX database..

https://ossindex.sonatype.org/vuln/53d58c08-d32b-4d21-92f4-d0930e6b3210?component-type=maven&component-name=org.codehaus.plexus.plexus-utils&utm_source=dependency-check&utm_medium=integration&utm_content=6.0.3

It reference an old issue from 2015
#3

And it seems to be solved 2016
f933e5e

I think some of the maintainer should therefore simply delete the OSSINDEX entry
@RickC37 RickC37 closed this as completed Jan 14, 2021
@RickC37
Copy link
Author

RickC37 commented Jan 14, 2021

updating myself... I think the issue is not the hit in the DB itself, it is that there is no affected version mentioned and therefore it still is a positive hit for newer version...

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@RickC37