Hi, please could you advise on the vulnerability report by maven central for the dependency `org.jacoco:org.jacoco.ant:0.8.8` and whether or not the jar is safe to use?
I did try searching the forum, FAQ's etc for an answer. These CVE's have been present in all releases so I guess the team have evaluated them and concluded that they don't actually affect the usage of the dependency? -- You received this message because you are subscribed to the Google Groups "JaCoCo and EclEmma Users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jacoco/176e8a03-5a1c-44f7-b4b9-88fb1a1ce53en%40googlegroups.com.
