Bump json-unit-assertj to 2.36.1

Fix CVE-2022-42003 by bumping json-unit-assertj to 2.36.1
which uses fixed jackson-databind version 2.14.0.

Change-Id: I3ab3cb9e03393ea1d223616e0b013f7f10e6a74c
Signed-off-by: Ivan Hrasko <ivan.hrasko@pantheon.tech>
(cherry picked from commit 4c0bdb9e23281e579ec9b90a510bd2f0844de502)

diff --git a/restconf/restconf-nb/pom.xml b/restconf/restconf-nb/pom.xml
index 72e7476344193748479dd4a131435a8dddb180a2..dcd0d434d772ce1fa22bc842aad187b8ce9883f7 100644 (file)
--- a/restconf/restconf-nb/pom.xml
+++ b/restconf/restconf-nb/pom.xml
@@ -289,7 +289,7 @@
     <dependency>
       <groupId>net.javacrumbs.json-unit</groupId>
       <artifactId>json-unit-assertj</artifactId>
-      <version>2.36.0</version>
+      <version>2.36.1</version>
       <scope>test</scope>
     </dependency>
   </dependencies>