You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Some of the dependencies referenced by the plugin are pretty old. For example, it uses google-api-client 1.30.9, released 4 years ago. In turn, the dependency pulls in a very old version of jackson-core, 2.10.2, which contains a security vulnerability with "high" severity.
How would you use it?
Gradle doesn't create an isolated classloader between different plugins in a project. Therefore, Jackson core can easily conflict with other Jackson core versions in the combined plugin classpath.
The text was updated successfully, but these errors were encountered:
What feature would you like to see?
Some of the dependencies referenced by the plugin are pretty old. For example, it uses
google-api-client
1.30.9, released 4 years ago. In turn, the dependency pulls in a very old version ofjackson-core
, 2.10.2, which contains a security vulnerability with "high" severity.How would you use it?
Gradle doesn't create an isolated classloader between different plugins in a project. Therefore, Jackson core can easily conflict with other Jackson core versions in the combined plugin classpath.
The text was updated successfully, but these errors were encountered: