我们的Spring Boot(云)应用程序使用rx-netty,其版本是
0.4.204.1.5.Final目前我们的安全审核系统发现当前的netty-codec版本(
4.1.52.Final4.1.68+我尝试将pom.xml中的
netty-codec4.1.68.Finalnetty-buffernetty-handler4.1.52我想知道:
谢谢
mvn dependency:tree...
[INFO] +- io.reactivex:rxnetty-contexts:jar:0.4.20:compile
[INFO] +- io.reactivex:rxnetty-servo:jar:0.4.20:compile
[INFO] | \- com.netflix.servo:servo-core:jar:0.12.21:runtime
[INFO] +- io.reactivex:rxnetty:jar:0.4.20:compile
[INFO] | +- io.netty:netty-codec-http:jar:4.1.69.Final:runtime
[INFO] | | +- io.netty:netty-common:jar:4.1.69.Final:runtime
[INFO] | | +- io.netty:netty-buffer:jar:4.1.52.Final:runtime
[INFO] | | +- io.netty:netty-transport:jar:4.1.52.Final:runtime
[INFO] | | \- io.netty:netty-codec:jar:4.1.52.Final:runtime
[INFO] | +- io.netty:netty-handler:jar:4.1.69.Final:runtime
[INFO] | | \- io.netty:netty-resolver:jar:4.1.52.Final:runtime
[INFO] | +- io.netty:netty-transport-native-epoll:jar:4.1.69.Final:runtime
[INFO] | | \- io.netty:netty-transport-native-unix-common:jar:4.1.52.Final:runtime
...
注意:Spring boot版本
2.5.54.1.68.Finalspring-boot-starter-parent2.5.5话虽这么说:
如何在 spring-boot 中升级到更高/更低版本的依赖项:
spring-boot-dependencies根据您的情况,将
netty.version:4.1.69.Final <properties>
<java.version>11</java.version>
<netty.version>4.1.69.Final</netty.version>
</properties>
当将
<netty.version>4.1.69.Final</netty.version>spring-boot-starter-parent:2.2.10.RELEASE当你执行
mvn dependency:tree4.1.69.Final输出在“netty”上过滤
Regel 1: [INFO] --- maven-dependency-plugin:3.1.2:tree (default-cli) @ netty-upgrade ---
Regel 2: [INFO] com.example:netty-upgrade:jar:0.0.1-SNAPSHOT
Regel 25: [INFO] | +- org.springframework.boot:spring-boot-starter-reactor-netty:jar:2.2.10.RELEASE:compile
Regel 26: [INFO] | | +- io.projectreactor.netty:reactor-netty:jar:0.9.12.RELEASE:compile
Regel 26: [INFO] | | +- io.projectreactor.netty:reactor-netty:jar:0.9.12.RELEASE:compile
Regel 27: [INFO] | | | +- io.netty:netty-codec-http2:jar:4.1.69.Final:compile
Regel 27: [INFO] | | | +- io.netty:netty-codec-http2:jar:4.1.69.Final:compile
Regel 28: [INFO] | | | +- io.netty:netty-handler-proxy:jar:4.1.69.Final:compile
Regel 28: [INFO] | | | +- io.netty:netty-handler-proxy:jar:4.1.69.Final:compile
Regel 29: [INFO] | | | | \- io.netty:netty-codec-socks:jar:4.1.69.Final:compile
Regel 29: [INFO] | | | | \- io.netty:netty-codec-socks:jar:4.1.69.Final:compile
Regel 30: [INFO] | | | \- io.netty:netty-transport-native-epoll:jar:linux-x86_64:4.1.69.Final:compile
Regel 30: [INFO] | | | \- io.netty:netty-transport-native-epoll:jar:linux-x86_64:4.1.69.Final:compile
Regel 42: [INFO] +- io.reactivex:rxnetty:jar:0.5.1:runtime
Regel 44: [INFO] | +- io.netty:netty-codec-http:jar:4.1.69.Final:compile
Regel 44: [INFO] | +- io.netty:netty-codec-http:jar:4.1.69.Final:compile
Regel 45: [INFO] | | +- io.netty:netty-common:jar:4.1.69.Final:compile
Regel 45: [INFO] | | +- io.netty:netty-common:jar:4.1.69.Final:compile
Regel 46: [INFO] | | +- io.netty:netty-buffer:jar:4.1.69.Final:compile
Regel 46: [INFO] | | +- io.netty:netty-buffer:jar:4.1.69.Final:compile
Regel 47: [INFO] | | +- io.netty:netty-transport:jar:4.1.69.Final:compile
Regel 47: [INFO] | | +- io.netty:netty-transport:jar:4.1.69.Final:compile
Regel 48: [INFO] | | \- io.netty:netty-codec:jar:4.1.69.Final:compile
Regel 48: [INFO] | | \- io.netty:netty-codec:jar:4.1.69.Final:compile
Regel 49: [INFO] | +- io.netty:netty-handler:jar:4.1.69.Final:compile
Regel 49: [INFO] | +- io.netty:netty-handler:jar:4.1.69.Final:compile
Regel 50: [INFO] | | \- io.netty:netty-resolver:jar:4.1.69.Final:compile
Regel 50: [INFO] | | \- io.netty:netty-resolver:jar:4.1.69.Final:compile
Regel 51: [INFO] | +- io.netty:netty-transport-native-epoll:jar:4.1.69.Final:runtime
Regel 51: [INFO] | +- io.netty:netty-transport-native-epoll:jar:4.1.69.Final:runtime
Regel 52: [INFO] | | \- io.netty:netty-transport-native-unix-common:jar:4.1.69.Final:compile
Regel 52: [INFO] | | \- io.netty:netty-transport-native-unix-common:jar:4.1.69.Final:compile
因此,如果您仍有对其他版本的引用,请使用
mvn dependency:tree