Suspicious files reported in security scan

Hello,
The following showed up in a recent audit of my website and I want to make sure that there is nothing wrong. Please review the following. Thank you.
Karen

/components/com_osmembership/tcpdf/CHANGELOG.TXT
suspicious lines to review:
PHARMA2T : PHARMACODE TWO-TRACKS
PHARMA : PHARMACODE

/components/com_osmembership/tcpdf/README.TXT
suspicious line to review:
* 1D and 2D barcodes: CODE 39, ANSI MH10.8M-1983, USD-3, 3 of 9, CODE 93, USS-93, Standard 2 of 5, Interleaved 2 of 5, CODE 128 A/B/C, 2 and 5 Digits UPC-Based Extension, EAN 8, EAN 13, UPC-A, UPC-E, MSI, POSTNET, PLANET, RMS4CC (Royal Mail 4-state Customer Code), CBC (Customer Bar Code), KIX (Klant index - Customer index), Intelligent Mail Barcode, Onecode, USPS-B-3200, CODABAR, CODE 11, PHARMACODE, PHARMACODE TWO-TRACKS, Datamatrix, QR-Code, PDF417;

Hi Karen,

I'm not on Tuan's development team, but those are just text files that are included in the distribution of TCPDF which Membership Pro uses to dynamically produce the PDFs for subscribers (like receipts, invoices, etc.). Those files describe what the TCPDF developers changed over time and also describe how to use the package (the readme file). You or your clients have nothing to worry about.

Sidenote: Those change notes and readme entries correspond to the ability to include barcodes on the PDF.

Best,
Elliot

Hi Karen

That's part of TCPDF Library ( www.tcpdf.org/ ), a popular TCPDF library which we are using to generate invoice PDF in our extensions, so you don't have to worry about it

There are no security issues with it at all (at least until now)

Regards,

Tuan