From 1d807c69ee9186bfb8a92e6d067871e09f0a9773 Mon Sep 17 00:00:00 2001 From: Ramon Bisswanger Date: Wed, 30 Oct 2024 10:41:16 +0100 Subject: [PATCH] fix: typo --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 4a146889b..fffc76c37 100644 --- a/README.md +++ b/README.md @@ -120,7 +120,7 @@ The aem-project-archetype is not considered part of the core AEM product, in tha Users of the archetype are responsible for updating the build-time dependencies of their projects created with the archetype to address any security vulnerabilities, including any maven dependencies, maven plugin dependencies, and npm package dependencies. Furthermore, it is important to understand that dependencies (and in particular, maven dependencies) usually describe the minimal API version the code supports at runtime. The dependency versions effectively used at runtime may be newer and not vulnerable. Please always verify any reported vulnerable (transitive) dependencies against the list of bundles deployed at runtime in AEM as a Cloud Services or the currently used Service Pack on AMS or on-prem. -Please continue to report security vulnerabilities to Adobe following the official security policies and procedures [docurmented here.](https://github.com/adobe/aem-project-archetype/security) Please understand that Adobe uses some third-party dependencies, which it only has partial control over. For such dependencies it is important to report the vulnerabilities directly to the owner or to the contributors of these dependencies. Adobe will update the archetype once the transitive dependencies have been updated, but that may take more time. +Please continue to report security vulnerabilities to Adobe following the official security policies and procedures [documented here.](https://github.com/adobe/aem-project-archetype/security) Please understand that Adobe uses some third-party dependencies, which it only has partial control over. For such dependencies it is important to report the vulnerabilities directly to the owner or to the contributors of these dependencies. Adobe will update the archetype once the transitive dependencies have been updated, but that may take more time. In order to update transitive dependencies, please exclude the vulnerable transitive dependency and declare a more recent version within the project. For example: