search

sohutv / mqcloud

RocketMQ企业级一站式服务平台
Apache License 2.0
1.91k stars 272 forks source link

fix(sec): upgrade com.fasterxml.jackson.core:jackson-databind to 2.14.0-rc1 #34

Open lxxawfl opened 2 years ago

lxxawfl commented 2 years ago

What happened?

There are 1 security vulnerabilities found in com.fasterxml.jackson.core:jackson-databind 2.10.5

What did I do?

Upgrade com.fasterxml.jackson.core:jackson-databind from 2.10.5 to 2.14.0-rc1 for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

gaoyf commented 2 years ago

please use released version,not the rc。