Describe the feature
Hi,
I got feedback from vulnerability scanner, that one of your dependency - httpcore:4.4.16 is End Of Life and no longer maintained, which means it does not receive security fixes.
|
<httpcomponents.httpcore.version>4.4.16</httpcomponents.httpcore.version> |
IMPORTANT: HttpCore 4 is at End of Life and is no longer being developed or supported. The users of HttpCore 4 are strongly encouraged to upgrade to HttpCore 5.
https://hc.apache.org/httpcomponents-core-4.4.x/index.html
Are there any plans to migrate to the maintained newer version - HttpCore 5?
Use Case
Compliance with security guidelines about use of EOL dependencies.
Proposed Solution
Upgrade to HttpCore 5
Other Information
No response
Acknowledgements
AWS Java SDK version used
2.42.36
JDK version used
openjdk version "11.0.29"
Operating System and version
Amazon Linux 2023.11.20260406
Describe the feature
Hi,
I got feedback from vulnerability scanner, that one of your dependency - httpcore:4.4.16 is End Of Life and no longer maintained, which means it does not receive security fixes.
aws-sdk-java-v2/pom.xml
Line 191 in 1926819
https://hc.apache.org/httpcomponents-core-4.4.x/index.html
Are there any plans to migrate to the maintained newer version - HttpCore 5?
Use Case
Compliance with security guidelines about use of EOL dependencies.
Proposed Solution
Upgrade to HttpCore 5
Other Information
No response
Acknowledgements
AWS Java SDK version used
2.42.36
JDK version used
openjdk version "11.0.29"
Operating System and version
Amazon Linux 2023.11.20260406