Skip to content

Commit

Permalink
Keep jackson-databind in alignment with OpenSearch (#1817)
Browse files Browse the repository at this point in the history
While addressing CVE-2020-36518 the security team updated to the latest
minor version of jackson-databind, whereas the OpenSearch team took the
CVE specific update.  Aligning with OpenSearch's version.

Signed-off-by: Peter Nied <[email protected]>
  • Loading branch information
peternied authored May 2, 2022
1 parent ce18577 commit 3c86522
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion build.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ dependencies {
implementation 'org.greenrobot:eventbus:3.2.0'
implementation 'commons-cli:commons-cli:1.3.1'
implementation 'org.bouncycastle:bcprov-jdk15on:1.67'
implementation 'com.fasterxml.jackson.core:jackson-databind:2.13.2.1'
implementation 'com.fasterxml.jackson.core:jackson-databind:2.12.6.1'
implementation 'org.ldaptive:ldaptive:1.2.3'
implementation 'org.apache.httpcomponents:httpclient-cache:4.5.13'
implementation 'io.jsonwebtoken:jjwt-api:0.10.8'
Expand Down

0 comments on commit 3c86522

Please sign in to comment.