Remediate dependencies

Remediate dependencies using IntelliJ IDEA Ultimate.

Finally, we can remediate these vulnerabilities. We can click Copy safe version to clipboard in the Vulnerable Dependencies tool window details pane to copy the safe version and paste it into our build file.

Copy safe version to clipboard

We can also fix it directly in our build file. When we hover over a specific vulnerable dependency, the hover menu includes an action that we can click to upgrade the version (if a new version is available).

Show hover

Fixed version from hover

Alternatively, we can use the intention action shortcut, ⌥⏎ (macOS) / Alt+Enter (Windows/Linux) and select the action to upgrade the version (if a new version is available).

Show context actions

Fixed version from context actions

After we update the versions, we can Load Maven Changes, using ⌘⇧I (macOS) / Ctrl+Shift+O (Windows/Linux). We see that the overview in the Vulnerable Checker tool window is updated, and we see that dependencies that we have upgraded and are no longer vulnerable are removed, or shown with a green checkmark if we have enabled Show safe dependencies.

Load Maven Changes

Updated