com.gradle:gradle-enterprise-maven-extension@1.2.7 vulnerabilities

Maven extension for Gradle Enterprise installations that provides Build Insights, Build Caching, Predictive Test Selection, and Test Distribution for Maven builds. Alternatively, Build Insights can be captured and viewed for free at scans.gradle.com and Build Caching can be used for free locally. See https://gradle.com for more information on Gradle Enterprise.

Direct Vulnerabilities

Known vulnerabilities in the com.gradle:gradle-enterprise-maven-extension package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Deserialization of Untrusted Data

com.gradle:gradle-enterprise-maven-extension is a Gradle Enterprise Maven Extension.

Affected versions of this package are vulnerable to Deserialization of Untrusted Data. A socket stream security vulnerability when capturing tests. No further information is available about this vulnerability.

How to fix Deserialization of Untrusted Data?

Upgrade com.gradle:gradle-enterprise-maven-extension to version 1.6 or higher.

(,1.6)