<dependency>
<groupId>io.rsocket</groupId>
<artifactId>rsocket-examples</artifactId>
<version>1.0.0-RC5</version>
</dependency>
I think this should be removed. This is currently a problem for us because we apply everything that is there in the Spring BOM to a dependency set in order to scan for security vulnerabilities.
The BOM published by this project (https://search.maven.org/artifact/io.rsocket/rsocket-bom/1.0.0-RC5/pom) includes unpublished artifacts:
I think this should be removed. This is currently a problem for us because we apply everything that is there in the Spring BOM to a dependency set in order to scan for security vulnerabilities.