io.quarkus:quarkus-core-deployment@2.8.1.Final vulnerabilities
-
latest version
3.15.1
-
latest non vulnerable version
-
first published
6 years ago
-
latest version published
a month ago
-
licenses detected
- [0.13.0,)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the io.quarkus:quarkus-core-deployment package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
io.quarkus:quarkus-core-deployment is a Cloud Native, (Linux) Container First framework for writing Java applications Affected versions of this package are vulnerable to Information Exposure Through Environmental Variables due to the capture of local environment variables from the Quarkus namespace during the application's build process. Running the resulting application inherits the values captured at build time, which may include environment variables or Note: This behaviour only happens for configuration properties from the How to fix Information Exposure Through Environmental Variables? Upgrade |
[,3.2.11)
|