Dependency updates to eliminate vulnerabilities discovered by dependency-check
Eliminated all CRITICAL and HIGH except for CVE-2016-1000027 (which more or less forbids the use of Spring since 2016 -- it's moderately controversial.
@road
On April 6, 2026, some Project Owners and Maintainers will receive a large number of email warnings about pending Project deletions. See this news article for details.
Eliminated all CRITICAL and HIGH except for CVE-2016-1000027 (which more or less forbids the use of Spring since 2016 -- it's moderately controversial.
@road