BrianNichols
commented
3 months ago The jackson-databind library has already been upgraded to 2.17.2 in the stage and stage-jdk8 branches. They will be included in the next client release.
Closed bwbradshaw closed 3 months ago
BrianNichols
commented
3 months ago The jackson-databind library has already been upgraded to 2.17.2 in the stage and stage-jdk8 branches. They will be included in the next client release.
bwbradshaw
commented
3 months ago Excellent; sorry to bother you!
This vulnerability is getting picked up in our testing repo. I think snyk isn't automatically making PRs for the proxy/pom.xml