ottlinger commented on PR #641: URL: https://github.com/apache/creadur-rat/pull/641#issuecomment-4148704728
@cstamas is there a way to fix the security warning: ``` Package Affected versions Patched version org.codehaus.plexus:plexus-utils (Maven) <= 4.0.2 4.0.3 Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code ``` or is this only an 4.x issue and can safely be ignored here? Thanks for your help -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
