Bump json version to address CVE-2023-5072 (opensearch-project#1573)

Signed-off-by: Yaliang Wu <[email protected]>
rbhavna · Oct 31, 2023 · 251ebf1 · 251ebf1
1 parent b60b2c6
commit 251ebf1
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 2 deletions.
diff --git a/common/build.gradle b/common/build.gradle
@@ -20,7 +20,7 @@ dependencies {
 
     compileOnly group: 'org.apache.commons', name: 'commons-text', version: '1.10.0'
     compileOnly group: 'com.google.code.gson', name: 'gson', version: '2.10.1'
-    compileOnly group: 'org.json', name: 'json', version: '20230227'
+    compileOnly group: 'org.json', name: 'json', version: '20231013'
 }
 
 jacocoTestReport {

diff --git a/ml-algorithms/build.gradle b/ml-algorithms/build.gradle
@@ -63,7 +63,7 @@ dependencies {
     implementation 'software.amazon.awssdk:apache-client'
     implementation 'com.amazonaws:aws-encryption-sdk-java:2.4.0'
     implementation 'com.jayway.jsonpath:json-path:2.8.0'
-    implementation group: 'org.json', name: 'json', version: '20230227'
+    implementation group: 'org.json', name: 'json', version: '20231013'
 }
 
 configurations.all {