Security of Eclipse Jetty dependencies

This page summarizes the projects mentioned and recommended in the original post on /r/qztray
Server zpl Jetty epl Websockets

WorkOS
Our great sponsors
  • WorkOS - The modern identity platform for B2B SaaS
  • InfluxDB - Power Real-Time Data Analytics at Scale
  • SaaSHub - Software Alternatives and Reviews
Our great sponsors

  • tray

    Browser plugin for sending documents and raw commands to a printer or attached device. (by qzind)

    I already checked the GitHub repo and noticed that with pull request #1000 many libraries have been upgraded. However, Eclipse Jetty has only been upgraded to v9.4.48, which only mitigates the CVEs 2047 and 2048, not 2191 (which is mitigated from v10.0.10 and later).

  • Jetty

    Eclipse Jetty® - Web Container & Clients - supports HTTP/2, HTTP/1.1, HTTP/1.0, websocket, servlets, and more

    So, 9.4.48 fixes the first two CVEs, but the last one doesn't mention 9.4 at all, so I'm not sure if that's left out due to EOL status for 9.4.

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts