|
|
|
|
|
|
by ZeroSolstice
888 days ago
|
|
|
Shouldn't your analysis/understanding show that upgrading the library is enough? If a CVE or vulnerability scanners test isn't telling you the problem that needs to be solved upgrading a library or anything else won't make a difference and you wouldn't know the problem either way. Approaching vulnerability management from a developers view is a very narrow scope. |
|
|