Skip to content

Updates apache axis2 dependencies

Stefanrequested to merge
svdo/clj-soap:master into master

This ensures that Xalan 2.7.2 is used (instead of 2.7.0), which eliminates known vulnerabilities:

+----------------------------+-------------------------------+ | dependency | status | +----------------------------+-------------------------------+ | commons-httpclient-3.1.jar | CVE-2012-5783, CVE-2020-13956 | | httpclient-4.5.2.jar | CVE-2020-13956 | | xalan-2.7.0.jar | CVE-2014-0107 | +----------------------------+-------------------------------+

Merge request reports