[CVE-2023-6378] - Manually bump logback-classic to 1.2.13 - Githubissues

Intersmash / intersmash

Intersmash - Cloud-native testing with Java!

Apache License 2.0

5 stars 13 forks source link

[CVE-2023-6378] - Manually bump logback-classic to 1.2.13 #130

Closed fabiobrz closed 10 months ago

fabiobrz commented 10 months ago

Description

Manually bump logback-classic to 1.2.13 to resolve the security alert.

Fix https://github.com/Intersmash/intersmash/security/dependabot/4

Type of change

[x] Bug fix (non-breaking change which fixes an issue)
[ ] Feature (non-breaking change which adds functionality)
[ ] Breaking change (fix or feature that would cause existing functionality to change
[ ] Chore (non-breaking change which doesn't affect codebase; test, version modification, documentation, etc.)

Checklist

[x] Code contributed by me aligns with current project license: Apache 2.0
[x] Pull Request contains a description of the changes
[x] Pull Request does not include fixes for multiple issues/topics
[x] Code is self-descriptive and/or documented
[x] I have implemented unit tests to cover my changes
[ ] I tested my code in OpenShift