httpclient:4.5.3 has vulnerability:
https://mvnrepository.com/artifact/org.apache.httpcomponents/httpclient/4.5.3
to fix the issue upgrade to httpclient:4.5.14
@OlgaMaciaszek
Comment From: OlgaMaciaszek
Hello, @ziad-saade. As you can see in the dependency tree, it is not our dependency. It's brought transitively by Netflix/Eureka. I have created a PR there: https://github.com/Netflix/eureka/pull/1598, but dependency issues for that project can be registered there directly and PRs can be submitted to get the change in.
Comment From: ziad-saade
Good morning @OlgaMaciaszek
Thanks for the PR.