Skip to content
This repository was archived by the owner on Jan 16, 2025. It is now read-only.

Remove development-only pom.xml file #7

Merged
merged 1 commit into from
Aug 31, 2023
Merged

Remove development-only pom.xml file #7

merged 1 commit into from
Aug 31, 2023

Conversation

@semperos
Copy link
Member

No description provided.

@shortcut-integration
Copy link

This pull request has been linked to Shortcut Story #243796: Resolve vulnerable dependencies for spymemcached.

@semperos semperos requested review from favila and virgofx August 31, 2023 19:35
@semperos semperos merged commit 8adced8 into master+patches-on-couchbase-spymemcached Aug 31, 2023
@semperos semperos deleted the daniel/sc-243796/resolve-vulnerable-dependencies-for-spymemcached branch August 31, 2023 19:36
@virgofx
Copy link

virgofx commented Aug 31, 2023

Hurray!

@favila
Copy link

favila commented Aug 31, 2023

The real versions are still here? https://github.com/useshortcut/spymemcached/blob/master%2Bpatches-on-couchbase-spymemcached/ivy/libraries.properties

@semperos
Copy link
Member Author

@favila That is what Ivy relies on, yes. I also can't get Ivy to resolve the dependencies when I run ant jar, but given our discussion about how spymemcached is consumed by backend, we're basically electing to ignore this repository and cover the security surface area for it in useshortcut/backend.

@favila
Copy link

favila commented Aug 31, 2023

Also I'm pretty sure the pom in the release artifact doesn't mention any of these: https://github.com/useshortcut/spymemcached/blob/master%2Bpatches-on-couchbase-spymemcached/spymemcached-2.12.3.sc5.pom

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

@virgofx virgofx Awaiting requested review from virgofx

@favila favila Awaiting requested review from favila

1 more reviewer

@tobias tobias tobias approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

sc-team:engineering

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@semperos @virgofx @favila @tobias