[Snyk] Upgrade org.codehaus.jackson:jackson-mapper-asl from 1.9.4 to 1.9.13#2
[Snyk] Upgrade org.codehaus.jackson:jackson-mapper-asl from 1.9.4 to 1.9.13#2
Conversation
…9.13 Snyk has created this PR to upgrade org.codehaus.jackson:jackson-mapper-asl from 1.9.4 to 1.9.13. See this package in maven: org.codehaus.jackson:jackson-mapper-asl See this project in Snyk: https://app.snyk.io/org/or-QuUsyZrbWBirP6ZihBbkNA/project/e5a72a5e-f907-4048-814f-0bdc1e354b52?utm_source=github&utm_medium=referral&page=upgrade-pr
✅ Snyk checks have passed. No issues have been found so far.
💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse. |
There was a problem hiding this comment.
Pull request overview
This Snyk-generated PR upgrades the Jackson 1.x library (org.codehaus.jackson:jackson-mapper-asl) from version 1.9.4 to 1.9.13 to address potential security vulnerabilities and keep dependencies up-to-date. The PR also includes a minor XML formatting change to the Maven compiler plugin configuration.
Changes:
- Upgraded org.codehaus.jackson:jackson-mapper-asl from 1.9.4 to 1.9.13
- Changed
<compilerArgument></compilerArgument>to self-closing tag format<compilerArgument/>
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| <dependency> | ||
| <groupId>org.codehaus.jackson</groupId> | ||
| <artifactId>jackson-mapper-asl</artifactId> | ||
| <version>1.9.4</version> | ||
| <version>1.9.13</version> | ||
| </dependency> |
There was a problem hiding this comment.
The dependency org.codehaus.jackson:jackson-mapper-asl appears to be unused in the codebase. The project uses Jackson 2.x via google-http-client-jackson2 (line 61), not the Jackson 1.x library specified here. The comment on line 52 mentions "Topics API sample" but no such sample exists in the codebase. Additionally, Jackson 1.x (org.codehaus.jackson) has been deprecated and end-of-life for many years. Consider removing this unused dependency entirely rather than upgrading it.
Snyk has created this PR to upgrade org.codehaus.jackson:jackson-mapper-asl from 1.9.4 to 1.9.13.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 9 versions ahead of your current version.
The recommended version was released 12 years ago.
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: