yes that's the other option... keep in mind that, this won't prevent future problems e.g. if new vulnerabilities are found you have to update again... if you exclude the dependencies you they can't have future problems ;) that's why I suggested excluding them. anyways maven supports both ways.
cor3000 ( 2020-04-27 18:11:53 +0800 )editdon't worry, if it breaks it's a bug (please let us know if that's the case) see new features doc
cor3000 ( 2020-04-28 12:21:26 +0800 )edit