Skip to content

Instantly share code, notes, and snippets.

Last active Sep 11, 2017
What would you like to do?
Example enforcer rule to exclude commons-collections 3.2.1 from the build
<!-- Avoid the M.A.D. Gadget vulnerability in certain apache commons-collections versions -->
<!-- ... -->

This comment has been minimized.

Copy link

@TobiX TobiX commented Sep 5, 2017

Unfortunatly, the second exclude is wrong, since the GAV for commons-collections 4 is different from older versions. The correct syntax is:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment