Skip to content

HttpComponents HttpCore 4.x - End of Life Notification (EOL) #6880

@tporeba

Description

@tporeba

Describe the feature

Hi,
I got feedback from vulnerability scanner, that one of your dependency - httpcore:4.4.16 is End Of Life and no longer maintained, which means it does not receive security fixes.

<httpcomponents.httpcore.version>4.4.16</httpcomponents.httpcore.version>

IMPORTANT: HttpCore 4 is at End of Life and is no longer being developed or supported. The users of HttpCore 4 are strongly encouraged to upgrade to HttpCore 5.

https://hc.apache.org/httpcomponents-core-4.4.x/index.html

Are there any plans to migrate to the maintained newer version - HttpCore 5?

Use Case

Compliance with security guidelines about use of EOL dependencies.

Proposed Solution

Upgrade to HttpCore 5

Other Information

No response

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

AWS Java SDK version used

2.42.36

JDK version used

openjdk version "11.0.29"

Operating System and version

Amazon Linux 2023.11.20260406

Metadata

Metadata

Assignees

No one assigned

    Labels

    feature-requestA feature should be added or improved.p2This is a standard priority issue

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions