Description

We are using Core Features of the googleguava as a dependency in our project. Current version is 33.5.0-jre.

In our internal security scan (conducted via Black Duck), we found that 'JSpecify annotations' dependency included in your package have not been updated for more than 12 months.

This includes both runtime and transitive dependencies that are part of your package's dependency tree.

We are raising this issue to make you aware of this observation. Is this outdated dependency something you plan to update?

Outdated Dependency List (from Black Duck scan)

The following dependency (direct or transitive) in your package that were identified as outdated (last updated >12 months ago):