Vulnerabilities in dependency `com.overzealous:remark:1.1.0` #34

midmarch · 2022-11-08T11:32:02Z

Dependency com.overzealous:remark:1.1.0, declared here:

markdown-gradle-plugin/build.gradle

Line 74 in 5087eec

api('com.overzealous:remark:1.1.0') { transitive = false }

contains multiple vulnerabilities:

Ref: https://mvnrepository.com/artifact/com.overzealous/remark/1.1.0

The text was updated successfully, but these errors were encountered:

aalmiray · 2022-11-08T12:35:12Z

The CVES come from jsoup. Latest jsoup (1.15.3) fixes these errors but in a binary incompatible way. Remark (com.kotcrab.remark:remark:1.2.0) has not been updated.

siboxd · 2024-07-15T16:14:56Z

The mentioned dependency is no more present on maven, and any build using your library fails because of it.

Can it be replaced, and a new library version published?

midmarch changed the title ~~Vulnirabilities in dependency com.overzealous:remark:1.1.0~~ Vulnerabilities in dependency com.overzealous:remark:1.1.0 Nov 8, 2022

aalmiray mentioned this issue Jul 16, 2024

Remark 1.1.0 isn't available on any repository #36

Open

wsbrenk mentioned this issue Jul 22, 2024

[BUG] Building stable release of HO 8.1 failed ho-dev/HattrickOrganizer#2116

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Vulnerabilities in dependency `com.overzealous:remark:1.1.0` #34

Vulnerabilities in dependency `com.overzealous:remark:1.1.0` #34

midmarch commented Nov 8, 2022 •

edited

Loading

aalmiray commented Nov 8, 2022

siboxd commented Jul 15, 2024

Vulnerabilities in dependency com.overzealous:remark:1.1.0 #34

Vulnerabilities in dependency com.overzealous:remark:1.1.0 #34

Comments

midmarch commented Nov 8, 2022 • edited Loading

aalmiray commented Nov 8, 2022

siboxd commented Jul 15, 2024

Vulnerabilities in dependency `com.overzealous:remark:1.1.0` #34

Vulnerabilities in dependency `com.overzealous:remark:1.1.0` #34

midmarch commented Nov 8, 2022 •

edited

Loading