-
Notifications
You must be signed in to change notification settings - Fork 1.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Upgrading Jackson-Databind version #1982
Upgrading Jackson-Databind version #1982
Conversation
Signed-off-by: Rishikesh1159 <[email protected]>
Can one of the admins verify this patch? |
buildSrc/build.gradle
Outdated
@@ -116,7 +116,7 @@ dependencies { | |||
api 'com.avast.gradle:gradle-docker-compose-plugin:0.14.12' | |||
api 'org.apache.maven:maven-model:3.6.2' | |||
api 'com.networknt:json-schema-validator:1.0.36' | |||
api 'com.fasterxml.jackson.core:jackson-databind:2.12.5' | |||
api 'com.fasterxml.jackson.core:jackson-databind:2.12.6' |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Could you please change it to${props.getProperty('jackson')}
? Thank you.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@reta Sure I will change that
@Rishikesh1159 please run |
Signed-off-by: Rishikesh1159 <[email protected]>
start gradle check |
* Upgrading Jackson-Databind version Signed-off-by: Rishikesh1159 <[email protected]> * Adding jackson-databind version using getProperty method Signed-off-by: Rishikesh1159 <[email protected]> (cherry picked from commit 1568407)
* Upgrading Jackson-Databind version Signed-off-by: Rishikesh1159 <[email protected]> * Adding jackson-databind version using getProperty method Signed-off-by: Rishikesh1159 <[email protected]> (cherry picked from commit 1568407) Co-authored-by: Rishikesh Pasham <[email protected]>
Signed-off-by: Rishikesh1159 [email protected]
Description
Update the version of jackson-databind to remove the vulnerability WS-2021-0616
Issues Resolved
None
Check List
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.