-
Task
-
Resolution: Won't Do
-
Medium
-
None
-
None
-
None
-
Policy Dublin 3 2/12-2/26, Policy Dublin 4 2/28-3/14, Policy 5/26-6/5
As a result of using Java API implemented in policy/engine, the CLM security report notes jackson-databind (NOTE: used to show springframework) as a security issue although that is not used.
This task to investigate if excluding it from the pom.xml can safely ensure the policy/distribution runs fine. I believe this is the case. If confirmed, let's add the exclusion and confirm with a CLM report that all is well.