Vulnerable dependency #66
Description
IntelliJ is flagging the totp library for one of its dependencies:
Dependency maven:com.beust:jcommander:1.72 is vulnerable
Upgrade to 1.75
WS-2019-0490, Score: 8.1
Inclusion of Functionality from Untrusted Control Sphere vulnerability found in jcommander before 1.75. jcommander resolving dependencies over HTTP instead of HTTPS.
Read More: https://www.mend.io/vulnerability-database/WS-2019-0490?utm_source=JetBrains