[ https://issues.apache.org/jira/browse/MDEPLOY-188?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17965771#comment-17965771 ]
Olivier Lamy commented on MDEPLOY-188: -------------------------------------- This project has moved from Jira to GitHub Issues. This issue was migrated to [apache/maven-deploy-plugin#523|https://github.com/apache/maven-deploy-plugin/issues/523]. > Upgrade plexus-utils to 3.0.18 > ------------------------------ > > Key: MDEPLOY-188 > URL: https://issues.apache.org/jira/browse/MDEPLOY-188 > Project: Maven Deploy Plugin (Moved to GitHub Issues) > Issue Type: Dependency upgrade > Affects Versions: 3.0.0-M1 > Reporter: Karl Heinz Marbaise > Assignee: Karl Heinz Marbaise > Priority: Minor > Fix For: 3.0.0-M1 > > > [Release Notes for plexus-utils > 3.0.18|http://jira.codehaus.org/secure/ReleaseNote.jspa?projectId=11432&version=20654] > * Bug > ** [PLXUTILS-165] - Improve semantics of followSymlinks > [Release Notes for plexus-utils > 3.0.16|http://jira.codehaus.org/secure/ReleaseNote.jspa?projectId=11432&version=19579] > * Bug > ** [PLXUTILS-161] - Commandline class shell injection vulnerabilities -- This message was sent by Atlassian Jira (v8.20.10#820010)