Skip to content

Commit

Permalink
[Snyk] Fix for 2 vulnerable dependencies (#1011)
Browse files Browse the repository at this point in the history 
* fix: pom.xml to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-450207
- https://snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-450917

* Corrected Databind versions in Jackson projects
  • Loading branch information
@snyk-bot @kdavisk6
snyk-bot authored and kdavisk6 committed Jul 18, 2019
1 parent 1fd73c0 commit 9519b3d
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 3 deletions.
4 changes: 2 additions & 2 deletions jackson-jaxb/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
<version>${jackson.version}</version>
<version>${jackson.databind.version}</version>
</dependency>

<dependency>
Expand All @@ -52,7 +52,7 @@
<dependency>
<groupId>com.fasterxml.jackson.jaxrs</groupId>
<artifactId>jackson-jaxrs-json-provider</artifactId>
<version>2.9.9</version>
<version>${jackson.version}</version>
</dependency>

<!-- RuntimeDelegateImpl -->
Expand Down
2 changes: 1 addition & 1 deletion jackson/pom.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
<artifactId>jackson-databind</artifactId>
<version>${jackson.version}</version>
<version>${jackson.databind.version}</version>
</dependency>

<dependency>
Expand Down

0 comments on commit 9519b3d

Please sign in to comment.