Closed nab0310 closed 3 years ago
When upgrading jackson to mitigate CVE-2020-25649 in a consuming project, we needed to bump the swagger2 version because they are using a deprecated method.
Swagger core issue: https://github.com/swagger-api/swagger-core/issues/3554 Swagger core commit: https://github.com/swagger-api/swagger-core/commit/0724ec80d214e97ddb8b8416f2b2cbad4651281c
Built locally.
This is bare minimum acceptable testing
./mvnw clean install -U
What was changed? Why is this necessary?
When upgrading jackson to mitigate CVE-2020-25649 in a consuming project, we needed to bump the swagger2 version because they are using a deprecated method.
Swagger core issue: https://github.com/swagger-api/swagger-core/issues/3554 Swagger core commit: https://github.com/swagger-api/swagger-core/commit/0724ec80d214e97ddb8b8416f2b2cbad4651281c
How was it tested?
Built locally.
How to test
./mvnw clean install -U