CVE-2019-11405: Insecurely resolved dependencies

April 22, 2019 (updated October 9, 2019)

OpenAPI Tools OpenAPI Generator uses http:// URLs in various build.gradle, build.gradle.mustache, and build.sbt files, which may have caused insecurely resolved dependencies.

References

nvd.nist.gov/vuln/detail/CVE-2019-11405

Detect and mitigate CVE-2019-11405 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →