Skip to content

Commit

Permalink
fix(vuln): upgrade jackson for CVE remediation (#375)
Browse files Browse the repository at this point in the history
the updated bom bumps jackson-databind from 2.9.9 -> 2.9.9.3

see FasterXML/jackson-databind#2387
  • Loading branch information
cfieber authored Sep 4, 2019
1 parent 5b1a027 commit 8fe5654
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion spinnaker-dependencies/spinnaker-dependencies.gradle
Original file line number Diff line number Diff line change
Expand Up @@ -50,7 +50,7 @@ dependencies {
api(platform("org.jetbrains.kotlinx:kotlinx-coroutines-bom:1.3.0"))
api(platform("org.jetbrains.kotlin:kotlin-bom:1.3.50"))
api(platform("org.junit:junit-bom:5.5.1"))
api(platform("com.fasterxml.jackson:jackson-bom:2.9.9"))
api(platform("com.fasterxml.jackson:jackson-bom:2.9.9.20190807"))
api(platform("org.springframework.boot:spring-boot-dependencies:${versions.springBoot}"))
api(platform("org.springframework.cloud:spring-cloud-dependencies:${versions.springCloud}"))
api(platform("com.amazonaws:aws-java-sdk-bom:${versions.aws}"))
Expand Down

0 comments on commit 8fe5654

Please sign in to comment.