Open gregallen opened 1 year ago
mapper.writeValueAsString(this)
at build-info-client/src/main/java/org/jfrog/build/client/artifactoryXrayResponse/ArtifactoryXrayResponse.java
(line 60)
the jackson-databind vulnerability is rejected by jackson team - see https://github.com/FasterXML/jackson-databind/issues/3972
suggest you need to whitelist this dependency (as has been done at my employer in a similar dep scanning tool)
Thanks for your contribution, @gregallen!
It appears that all Gradle tests are failing. You can check out the details here: https://github.com/jfrog/build-info/actions/runs/6308986191/job/17137306523?pr=760
Would you be able to take a look?
I have read the CLA Document and I hereby sign the CLA