deps: Update S3 to version 2.25.30

The goal of this version update is to remediate CVE-2024-29025 [1], which was actually already addressed in version 2.25.19 [2]. By now, version 2.25.30 [3] is available which includes that fix, so just take the latest version instead. [1]: https://nvd.nist.gov/vuln/detail/CVE-2024-29025 [2]: https://github.com/aws/aws-sdk-java-v2/releases/tag/2.25.19 [3]: https://github.com/aws/aws-sdk-java-v2/releases/tag/2.25.30 Signed-off-by: Marcel Bochtler <[email protected]>
oss-review-toolkit · Apr 12, 2024 · 3fd42b2 · 3fd42b2
1 parent 556310a
commit 3fd42b2
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
@@ -51,7 +51,7 @@ postgres = "42.7.3"
 postgresEmbedded = "1.0.3"
 reflections = "0.10.2"
 retrofit = "2.11.0"
-s3 = "2.25.0"
+s3 = "2.25.30"
 saxonHe = "12.4"
 scanoss = "1.1.6"
 semver4j = "5.2.3"