search

gresrun / jesque

An implementation of Resque in Java.
http://gresrun.github.io/jesque
Apache License 2.0
630 stars 131 forks source link

upgrade to jackson 2.9.8 #155

Closed lpfeup closed 5 years ago

lpfeup commented 5 years ago

Hi, This PR updates jackson to version 2.9.8, since 2.9.6 has known vulnerabilities.

Snyk: https://app.snyk.io/vuln/SNYK-JAVA-COMFASTERXMLJACKSONCORE-72449

CVEs: CVE-2018-14718, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721, CVE-2018-14722, CVE-2018-14723 CWEs: CWE-502

coveralls commented 5 years ago

Coverage Status

Coverage remained the same at 70.275% when pulling 3a40c9f658886f89b1531c6ba968bb01514fb3e7 on VirtusAI:upgrade-jackson-298 into 88bab76606af3270db630eb38c34d95bf018976f on gresrun:master.

gresrun commented 5 years ago

Thanks for the PR!