Code Review / netconf.git / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | review | tree
raw | patch | inline | side by side (parent: 4d0ec0e)
Bump json-unit-assertj to 2.36.1 13/104313/4
authorIvan Hrasko <ivan.hrasko@pantheon.tech>
Wed, 8 Feb 2023 16:03:21 +0000 (17:03 +0100)
committerRobert Varga <nite@hq.sk>
Wed, 8 Feb 2023 16:48:10 +0000 (16:48 +0000)
Fix CVE-2022-42003 by bumping json-unit-assertj to 2.36.1
which uses fixed jackson-databind version 2.14.0.

Change-Id: I3ab3cb9e03393ea1d223616e0b013f7f10e6a74c
Signed-off-by: Ivan Hrasko <ivan.hrasko@pantheon.tech>
restconf/restconf-nb/pom.xml patch | blob | history

diff --git a/restconf/restconf-nb/pom.xml b/restconf/restconf-nb/pom.xml
index 4ba044d9ee26c57061136b43838bb9e27306a304..dcacf4fc1446e33f532f63f3a18ff3983cf347cd 100644 (file)
--- a/restconf/restconf-nb/pom.xml
+++ b/restconf/restconf-nb/pom.xml
@@ -300,7 +300,7 @@
     <dependency>
       <groupId>net.javacrumbs.json-unit</groupId>
       <artifactId>json-unit-assertj</artifactId>
-      <version>2.36.0</version>
+      <version>2.36.1</version>
       <scope>test</scope>
     </dependency>
   </dependencies>
Netconf