Hello,
I would like to report one problem related to high-severity Path Traversal vulnerability (CVE-2025-67030) has been identified in the plexus-utils library, which is a dependency of this project.
plexus-utils version has already been bump by this commit last month, but given the severity of the CVE, would it make sense to release a new version of plexus-resources?
Hello,
I would like to report one problem related to high-severity Path Traversal vulnerability (CVE-2025-67030) has been identified in the
plexus-utilslibrary, which is a dependency of this project.plexus-utilsversion has already been bump by this commit last month, but given the severity of the CVE, would it make sense to release a new version ofplexus-resources?