Skip to content

Commit d3af6a9

Browse files
snyk-botkdavisk6
authored andcommitted
[Snyk] Fix for 2 vulnerable dependencies (OpenFeign#1011)
* fix: pom.xml to reduce vulnerabilities The following vulnerabilities are fixed with an upgrade: - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207 - https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917 * Corrected Databind versions in Jackson projects
1 parent 48966ab commit d3af6a9

2 files changed

Lines changed: 3 additions & 3 deletions

File tree

jackson-jaxb/pom.xml

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@
4040
<dependency>
4141
<groupId>com.fasterxml.jackson.core</groupId>
4242
<artifactId>jackson-databind</artifactId>
43-
<version>${jackson.version}</version>
43+
<version>${jackson.databind.version}</version>
4444
</dependency>
4545

4646
<dependency>
@@ -52,7 +52,7 @@
5252
<dependency>
5353
<groupId>com.fasterxml.jackson.jaxrs</groupId>
5454
<artifactId>jackson-jaxrs-json-provider</artifactId>
55-
<version>2.9.9</version>
55+
<version>${jackson.version}</version>
5656
</dependency>
5757

5858
<!-- RuntimeDelegateImpl -->

jackson/pom.xml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -40,7 +40,7 @@
4040
<dependency>
4141
<groupId>com.fasterxml.jackson.core</groupId>
4242
<artifactId>jackson-databind</artifactId>
43-
<version>${jackson.version}</version>
43+
<version>${jackson.databind.version}</version>
4444
</dependency>
4545

4646
<dependency>

0 commit comments

Comments
 (0)