-
Type:
Task
-
Resolution: Fixed
-
Priority:
L3 - Default
-
Affects Version/s: None
-
Component/s: assert
-
None
Acceptance Criteria (Required on creation):
- The Guava dependency is removed from the Camunda BPM assert codebase
Hints (Optional):
- Assert has a test dependency to Guava 28.1
- This version has a known vulnerability
- Guava is not used
- Guava is a test dependency, so this is not a vulnerability in assert: https://nvd.nist.gov/vuln/detail/CVE-2020-8908