Skip to content

Commit

Permalink
Update Jackson
Browse files Browse the repository at this point in the history
  • Loading branch information
@f11h
f11h committed Jun 19, 2023
1 parent 6d7cf0d commit 25bf7bd
Show file tree
Hide file tree
Showing 2 changed files with 31 additions and 0 deletions.
8 changes: 8 additions & 0 deletions owasp/suppressions.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,4 +4,12 @@
<notes>no YAML content from users is parsed within this service</notes>
<cve>CVE-2022-1471</cve>
</suppress>
<suppress>
<notes>False positive</notes>
<cve>CVE-2022-45688</cve>
</suppress>
<suppress>
<notes>No fix available, still analyzed</notes>
<cve>CVE-2023-35116</cve>
</suppress>
</suppressions>
23 changes: 23 additions & 0 deletions pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -87,6 +87,17 @@
<dependency>
<groupId>org.springframework.cloud</groupId>
<artifactId>spring-cloud-starter-openfeign</artifactId>
<exclusions>
<exclusion>
<groupId>commons-fileupload</groupId>
<artifactId>commons-fileupload</artifactId>
</exclusion>
</exclusions>
</dependency>
<dependency>
<groupId>commons-fileupload</groupId>
<artifactId>commons-fileupload</artifactId>
<version>1.5</version>
</dependency>
<dependency>
<groupId>io.github.openfeign</groupId>
Expand Down Expand Up @@ -120,10 +131,22 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
<version>2.15.2</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-core</artifactId>
<version>2.15.2</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.datatype</groupId>
<artifactId>jackson-datatype-jsr310</artifactId>
<version>2.15.2</version>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-annotations</artifactId>
<version>2.15.2</version>
</dependency>
<dependency>
<groupId>org.springframework.boot</groupId>
Expand Down

0 comments on commit 25bf7bd

Please sign in to comment.