Skip to content

Commit 09abb93

Browse files
Merge pull request #194 from refactorfirst/#193-update-vulnerable-dependencies
Update jackson-databind and maven-core to address vulnerabilities
2 parents cb673b7 + 2edcd7c commit 09abb93

2 files changed

Lines changed: 3 additions & 3 deletions

File tree

codebase-graph-builder/pom.xml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -18,7 +18,7 @@
1818
<dependency>
1919
<groupId>org.openrewrite.recipe</groupId>
2020
<artifactId>rewrite-recipe-bom</artifactId>
21-
<version>3.33.0</version>
21+
<version>3.34.0</version>
2222
<type>pom</type>
2323
<scope>import</scope>
2424
</dependency>

pom.xml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -62,7 +62,7 @@
6262
<sonar.organization>jimbethancourt-github</sonar.organization>
6363
<sonar.host.url>https://sonarcloud.io</sonar.host.url>
6464

65-
<maven.core.version>3.9.9</maven.core.version>
65+
<maven.core.version>3.9.16</maven.core.version>
6666
</properties>
6767

6868
<modules>
@@ -186,7 +186,7 @@
186186
<dependency>
187187
<groupId>com.fasterxml.jackson.core</groupId>
188188
<artifactId>jackson-databind</artifactId>
189-
<version>2.18.3</version>
189+
<version>2.18.8</version>
190190
</dependency>
191191

192192
<!-- Needed to suppress CVE-2023-2976-->

0 commit comments

Comments
 (0)