Merge pull request monitorjbl#197 from monitorjbl/readme-update

monitorjbl · web-flow · commit 307d7d550dd3 · 2019-08-03T03:17:21.000-04:00
Updating readme with yourkit logo
diff --git a/README.md b/README.md
@@ -1,10 +1,6 @@
 [![Run Status](https://api.shippable.com/projects/55cfbb00edd7f2c052a980a5/badge?branch=master)](https://app.shippable.com/projects/55cfbb00edd7f2c052a980a5) 
 
-# !!! Security Alert !!!
-
-Update to the [latest version (2.1.0)](https://search.maven.org/artifact/com.monitorjbl/xlsx-streamer/2.1.0/jar) **as soon as possible** to fix a critical vulnerability. The Xerxes XML parsing library that Excel Streaming Reader uses defaulted to allowing [entity expansion](https://www.owasp.org/index.php/XML_External_Entity_(XXE)_Prevention_Cheat_Sheet), which could be exploited by an attacker to read arbitrary data from your system. The latest versions of Excel Streaming Reader do not allow this and will throw a `ParsingException` if a workbook contains an XML document with an entity declaration.
-
-Many thanks to [Marc Wickenden](https://www.4armed.com/blog/excel-streaming-reader-vulnerability/) at 4Armed for finding this vulnerability and helping verify the patch!
+Profiled with [![Yourkit](https://www.yourkit.com/images/yklogo.png)](https://www.yourkit.com/java/profiler/)
 
 # Excel Streaming Reader
 
