Important: apache-commons-collections

Issue Overview: As reported upstream https://commons.apache.org/proper/commons-collections/security-reports.html, various classes in the functor collection are serialization and use reflection, which could result in arbitrary code execution if objects from untrusted sources are de-serialized...