You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@knox.apache.org by GitBox <gi...@apache.org> on 2022/04/05 11:23:07 UTC

[GitHub] [knox] pjfanning commented on pull request #547: KNOX-2717: upgrade shiro

pjfanning commented on PR #547:
URL: https://github.com/apache/knox/pull/547#issuecomment-1088584990

   @smolnar82 I reverted the log4j change - I added it because the CI didn't kick off for my initial commit. I'm relying on the CI build test the changes. I'm not a Knox user. I'm involved with the ASF Security team and am trying to get ASF projects to start looking at their transitive dependencies. The ASF get many requests from users and now even government agencies asking us why we don't have all the latest security fixes applied in our projects.


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscribe@knox.apache.org

For queries about this service, please contact Infrastructure at:
users@infra.apache.org