Address CVEs in deps.edn template

kit-clj / kit

Lightweight, modular framework for scalable web development in Clojure

https://kit-clj.github.io/

MIT License

476 stars 44 forks source link

Address CVEs in deps.edn template #103

Closed vemv closed 1 year ago

vemv commented 1 year ago

Per nvd-clojure:

+-------------------------------+--------------------------------+
| dependency                    | status                         |
+-------------------------------+--------------------------------+
| commons-fileupload-1.4.jar    | CVE-2023-24998                 |
| jackson-databind-2.13.2.2.jar | CVE-2022-42004, CVE-2022-42003 |
+-------------------------------+--------------------------------+

Cheers - V

yogthos commented 1 year ago

Thanks, just pushed out an update for the template.