Updating clj-yaml to version 0.7.107 to fix security vulnerability - Githubissues

yogthos / markdown-clj

Markdown parser in Clojure

Eclipse Public License 1.0

540 stars 120 forks source link

Updating clj-yaml to version 0.7.107 to fix security vulnerability #171

Closed bluesun closed 3 years ago

bluesun commented 3 years ago

clj-yaml 0.7.0 was using snakeyaml version 1.24
See https://nvd.nist.gov/vuln/detail/CVE-2017-18640#range-6738067

yogthos commented 3 years ago

thanks