Skip to content

fix: restrict wiremock to test scope#117

Open
markusbucher wants to merge 1 commit into
mainfrom
fix/wiremock-test-scope-handlebars-cve
Open

fix: restrict wiremock to test scope#117
markusbucher wants to merge 1 commit into
mainfrom
fix/wiremock-test-scope-handlebars-cve

Conversation

@markusbucher

Copy link
Copy Markdown
Contributor

wiremock-jetty12 was declared without test

…ropagating to consumers

wiremock-jetty12 was declared without <scope>test</scope>, causing
handlebars:4.3.1 (CVE-2025-48924, path traversal) to leak into the
compile-scope dependency tree of any app using this plugin.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant