Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Upgrade Maven plugins to protect against Zip Slip #2037

Merged
merged 1 commit into from Jun 19, 2018

Conversation

@sullis
Copy link
Contributor

@sullis sullis commented Jun 7, 2018

Motivation: Maven 'Zip Slip' vulnerability

https://maven.apache.org/security-plexus-archiver.html

Sean Sullivan
Motivation:  Maven 'Zip Slip' vulnerability

https://maven.apache.org/security-plexus-archiver.html
@CLAassistant
Copy link

@CLAassistant CLAassistant commented Jun 7, 2018

CLA assistant check
All committers have signed the CLA.

@sullis
Copy link
Contributor Author

@sullis sullis commented Jun 7, 2018

@axelfontaine axelfontaine added this to the Flyway 5.1.2 milestone Jun 7, 2018
@axelfontaine axelfontaine added the t: bug label Jun 7, 2018
@axelfontaine axelfontaine modified the milestones: Flyway 5.1.2, Flyway 5.2.0 Jun 19, 2018
@axelfontaine axelfontaine merged commit 15b0c14 into flyway:master Jun 19, 2018
2 checks passed
2 checks passed
continuous-integration/travis-ci/pr The Travis CI build passed
Details
license/cla Contributor License Agreement is signed.
Details
@axelfontaine axelfontaine changed the title upgrade Maven plugins Upgrade Maven plugins to protect against Zip Slip Jun 19, 2018
axelfontaine added a commit to flyway/flywaydb.org that referenced this pull request Jun 19, 2018
dohrayme pushed a commit to dohrayme/flyway that referenced this pull request Feb 3, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Linked issues

Successfully merging this pull request may close these issues.

None yet

3 participants
You can’t perform that action at this time.