arthas 4.0.4 被扫描出安全漏洞

- [x] 我已经在 [issues](https://github.com/alibaba/arthas/issues) 里搜索，没有重复的issue。

**我们将arthas的jar包，集成到我们应用的Dockerfile中，方便在应用在运行中过程中做故障诊断，版本如下：**

Manifest-Version: 1.0
Created-By: core engine team, middleware group, alibaba inc.
Build-Jdk-Spec: 21
Main-Class: com.taobao.arthas.boot.Bootstrap
Implementation-Title: arthas-boot
Implementation-Version: 4.0.4
Specification-Title: arthas-boot
Specification-Version: 4.0.4

**但最近被安全团队扫描出有中危漏洞**

<img width="1145" alt="Image" src="https://github.com/user-attachments/assets/f96743b5-0e63-4aab-9ece-bb34b8f615d5" />

**其指向的是这个版本**

<img width="1084" alt="Image" src="https://github.com/user-attachments/assets/f2a0341c-e2e2-4a2c-8c00-ec41631bdf53" />

**具体漏洞描述链接：**

https://www.oscs1024.com/hd/MPS-4bv1-8ho6

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

arthas 4.0.4 被扫描出安全漏洞 #2986

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

arthas 4.0.4 被扫描出安全漏洞 #2986

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions