You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Describe the bug
The VIVO platform includes orcid-api-client library version 0.6.3 via api/pom.xml which depends on jackson-databind 2.8.6 with 51 security vulnerabilities.
Describe the bug
The VIVO platform includes orcid-api-client library version 0.6.3 via api/pom.xml which depends on jackson-databind 2.8.6 with 51 security vulnerabilities.
To Reproduce
Check at https://mvnrepository.com/artifact/org.vivoweb/orcid-api-client/0.6.3
Expected behavior
Upgrade orcid-api-client library to 0.6.4 (https://mvnrepository.com/artifact/org.vivoweb/orcid-api-client/0.6.4) which is based on jackon-databind 2.10.1, the same as jena-arq 3.16.0 used in Vitro (https://mvnrepository.com/artifact/org.apache.jena/jena-arq/3.16.0).
The text was updated successfully, but these errors were encountered: