Details
-
Improvement
-
Resolution: Fixed
-
Major
-
None
-
None
-
None
Description
A Black Duck report for the SDK indicates two high risk items to investigate:
FindBugs jsr3053.0.2, depended on by Scala reactor extensions
scala-compiler2.12.10, depended on my Jsoniter
It's possible these truly are required dependencies and there's no solution, but it's worth checking.
Attachments
For Gerrit Dashboard: SCBC-209 | ||||||
---|---|---|---|---|---|---|
# | Subject | Branch | Project | Status | CR | V |
122698,2 | SCBC-209: Investigate Black Duck high risk dependencies | master | couchbase-jvm-clients | Status: MERGED | +2 | +1 |
122924,2 | SCBC-209: Investigate Black Duck high risk dependencies | colossus | couchbase-jvm-clients | Status: MERGED | +2 | +1 |