Light

anjoy8 / ancba Goto Github PK

⛳【多模块微服务脚手架平台——Ancba】前后端分离架构SpringBoot 2.x、SpringCloud、SpringAdmin、Spring Security、Mybatis-plus、(Shiro)、JWT、Feign、Nacos、Knif4j、Zipkin、Sleuth等。

Home Page: http://ancba.neters.club/wallboard

License: MIT License

Java 98.76% Dockerfile 1.24%

spring springboot spring-security mybatis-plus shiro feign nacos-spring-cloud

ancba's Introduction

Hi there 👋

🔭 I’m Anson Zhang. A software engineer .
👯 The main technology stack is: .NetCore + VUE + Java.
👒 Read my blog1 : https://www.cnblogs.com/laozhang-is-phi/ .
📃 Read my wechat article : https://mvp.neters.club/ .
💬 His profile: https://neters.club
📕《ASP.NET Core 5.0 开发入门与实战》: https://item.jd.com/13593742.html
📫 How to reach me: [email protected]
🎉 Most Valuable Professional:

ancba's People

Contributors

Stargazers

Watchers

Forkers

biiliwuiid dtcorecommunity wanggood1987 andy1199 yongyaoli viazamboni reasonzhang alvashui fenghb sefovan fr830 fx-sky lipcao jinyu8779

ancba's Issues

建议老张把ORM改成fluentmybatis

1、fluentmybaits 的链式编程风格比mybatisplus 更彻底。
2、完全可以脱离xml
3、可以利用IDE语法渲染, 可读性更高

问题收集一：没有nacos跑不起来

可以考虑禁掉nacos

同学，您这个项目引入了481个开源组件，存在42个漏洞，辛苦升级一下

检测到 anjoy8/ancba 一共引入了481个开源组件，存在42个漏洞

漏洞标题：Netty 安全漏洞
缺陷组件：io.netty:[email protected]
漏洞编号：CVE-2021-43797
漏洞描述：Netty是Netty社区的一款非阻塞I/O客户端-服务器框架，它主要用于开发Java网络应用程序，如协议服务器和客户端等。
Netty 存在安全漏洞，该漏洞源于Netty是一个异步事件驱动的网络应用框架，用于快速开发可维护的高性能协议服务器和客户端。版本4.1.7.1之前的Netty。当控件字符出现在头名称的开头和结尾时，Final将跳过它们。相反，它应该很快失败，因为这是规范不允许的，可能会导致HTTP请求走私。如果没有进行验证，netty可能会在将这些头名称转发给另一个用作代理的远程系统之前对其进行“消毒”。这个远程系统无法再看到无效的使用，因此无法看到
影响范围：(∞, 4.1.71.Final)
最小修复版本：4.1.71.Final
缺陷组件引入路径：club.neters:[email protected]>de.codecentric:[email protected]>de.codecentric:[email protected]>de.codecentric:[email protected]>org.springframework.boot:[email protected]>org.springframework.boot:[email protected]>io.projectreactor.netty:[email protected]>io.netty:[email protected]
club.neters:[email protected]>de.codecentric:[email protected]>de.codecentric:[email protected]>de.codecentric:[email protected]>org.springframework.boot:[email protected]>org.springframework.boot:[email protected]>io.projectreactor.netty:[email protected]>io.netty:[email protected]
club.neters:[email protected]>de.codecentric:[email protected]>de.codecentric:[email protected]>org.springframework.boot:[email protected]>org.springframework.boot:[email protected]>io.projectreactor.netty:[email protected]>io.netty:[email protected]

另外还有42个漏洞，详细报告：https://mofeisec.com/jr?p=i0055a

make every thing be better

as programmer & developer, should have B Tree in heart every moment.

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.