Hi, can you trigger an update of the pattern on https://nvd.nist.gov/vuln/detail/CVE-2016-1000031 somehow? Currently OWASP dependency check still considers 1.3.3 as insecure.
Cheers Dennis --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@commons.apache.org For additional commands, e-mail: dev-h...@commons.apache.org