"Security framework of XStream not initialized, XStream is probably vulnerable."

Question

"Security framework of XStream not initialized, XStream is probably vulnerable."

toyg opened this issue 5 years ago · comments

I keep getting a warning related to XStream in my builds - why is it there and how do I turn it off? I don't use XStream at all myself...

11:53:34 PM: Executing task 'createAllExecutables'...

> Task :compileJava UP-TO-DATE
> Task :processResources NO-SOURCE
> Task :classes UP-TO-DATE
> Task :shadowJar

> Task :createExe
Security framework of XStream not initialized, XStream is probably vulnerable.

> Task :createAllExecutables

BUILD SUCCESSFUL in 4s
3 actionable tasks: 2 executed, 1 up-to-date
11:53:38 PM: Task execution finished 'createAllExecutables'.

Zac Harvey · Answer 1 · Thu Nov 28 2019 09:48:05 GMT+0800 (China Standard Time)

FWIW I had the same issue and specifying both min and max JRE version solved it for some reason 🤷‍♂️

Sebastian Bögl · Answer 2 · Fri Apr 16 2021 06:16:20 GMT+0800 (China Standard Time)

This issue should be fixed with the launch4j 2.14 used in version 2.5.0 of this plugin