[GitHub] [solr] 3XC1T3D commented on pull request #1806: Update dependency org.xerial.snappy:snappy-java to v1.1.10.3

3XC1T3D commented on PR #1806: URL: https://github.com/apache/solr/pull/1806#issuecomment-1735295077 > > Hi, shouldn't it updated to 1.1.10.4 due to [CVE-2023-43642](https://github.com/advisories/GHSA-55g7-9cwv-5qfv)? > > We have a 3 day guard for adopting new versions. But you see v1

[GitHub] [solr] 3XC1T3D commented on pull request #1806: Update dependency org.xerial.snappy:snappy-java to v1.1.10.3

3XC1T3D commented on PR #1806: URL: https://github.com/apache/solr/pull/1806#issuecomment-1735225655 Hi, shouldn't it updated to 1.1.10.4 due to CVE-2023-43642? best regards -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitH