[
https://issues.apache.org/jira/browse/NIFI-6121?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16792728#comment-16792728
]
Joseph Witt commented on NIFI-6121:
-----------------------------------
[INFO] com.icegreen:greenmail ................................ 1.5.8 -> 1.5.9
[INFO] com.jcraft:jsch ..................................... 0.1.54 -> 0.1.55
[INFO] com.rabbitmq:amqp-client .............................. 5.4.1 -> 5.6.0
also org.slf4j: 1.7.25 -> 1.7.26 . this appears to be a no-op other than to
clear what sounds like it was an incorrectly high reported CVE on slf4j
> Update low hanging fruit dependencies of apache commons and related items
> -------------------------------------------------------------------------
>
> Key: NIFI-6121
> URL: https://issues.apache.org/jira/browse/NIFI-6121
> Project: Apache NiFi
> Issue Type: Task
> Components: Core Framework
> Reporter: Joseph Witt
> Priority: Major
>
> https://www.mojohaus.org/versions-maven-plugin/display-dependency-updates-mojo.html
> org.apache.commons:commons-collections4 ................... 4.2 -> 4.3
> org.apache.commons:commons-configuration2 ................. 2.3 -> 2.4
> org.apache.commons:commons-csv ............................ 1.5 -> 1.6
> org.apache.commons:commons-dbcp2 ...................... 2.5.0 -> 2.6.0
> org.apache.commons:commons-text ........................... 1.4 -> 1.6
> org.apache.poi:poi .................................... 4.0.0 -> 4.0.1
> org.apache.tika:tika-core ............................. 1.19.1 -> 1.20
> org.bouncycastle: ........................... 1.60 -> 1.61
> org.json:json ................................... 20160810 -> 20180813
> org.scijava:jython-shaded ........................... 2.7.1 -> 2.7.1.1
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
