Hi
recently I have made an analysis of code and libraries and some critical or very high vulnerabilities appear in libraries, some of them I don’t know their utility:
puma 3.12.6- BSD3
guzzlehttp/guzzle 5.3.4 - MIT
moment 2.18.1 - MIT
rails 5.2.8.1 - MIT
actionpack 5.2.8.1 MIT
netresearch/jsonmapper 4.5.0 - Open Software 3.0
twiig/twig 2.16.0 - BSD 3
activerecord 5.2.8.1 - MIT
symfony/process 5.4.39 - MIT
among others with medium level vulnerabilities
could they be removed or are they part of the core?
Thank you.