search

Kong / unirest-java

Unirest in Java: Simplified, lightweight HTTP client library.
http://kong.github.io/unirest-java/
MIT License
2.58k stars 591 forks source link

fix(sec): upgrade com.fasterxml.jackson.core:jackson-databind to 2.14.0-rc1 #455

Closed bitmasks closed 1 year ago

bitmasks commented 1 year ago

What happened?

There are 1 security vulnerabilities found in com.fasterxml.jackson.core:jackson-databind 2.13.3

What did I do?

Upgrade com.fasterxml.jackson.core:jackson-databind from 2.13.3 to 2.14.0-rc1 for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

CLAassistant commented 1 year ago

CLA assistant check
All committers have signed the CLA.

ryber commented 1 year ago

jackson is past this version