You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@myfaces.apache.org by we...@apache.org on 2022/02/13 13:31:33 UTC
[myfaces-tobago] 02/32: cherrypick from 2.x: build: CVE fix
This is an automated email from the ASF dual-hosted git repository.
weber pushed a commit to branch TOBAGO-1999_Select2
in repository https://gitbox.apache.org/repos/asf/myfaces-tobago.git
commit 207670bd836bcfe907aa2142db23b9a07fa5af89
Author: Udo Schnurpfeil <ud...@irian.eu>
AuthorDate: Mon Aug 30 10:19:51 2021 +0200
cherrypick from 2.x: build: CVE fix
* update ant (because of CVE-2021-36373, CVE-2021-36374)
* ignore jdom2 via suppression list
---
pom.xml | 2 +-
tobago-tool/tobago-tool-apt/pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/pom.xml b/pom.xml
index 0b79919..7b9d648 100644
--- a/pom.xml
+++ b/pom.xml
@@ -55,7 +55,7 @@
<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
<jsf.target>2.0</jsf.target>
<required.maven.version>2.2.1</required.maven.version>
- <checkstyle-rules.version>13</checkstyle-rules.version>
+ <checkstyle-rules.version>15-SNAPSHOT</checkstyle-rules.version>
<tobago.basedir>${project.basedir}</tobago.basedir>
</properties>
diff --git a/tobago-tool/tobago-tool-apt/pom.xml b/tobago-tool/tobago-tool-apt/pom.xml
index 50c6cb8..4554df7 100644
--- a/tobago-tool/tobago-tool-apt/pom.xml
+++ b/tobago-tool/tobago-tool-apt/pom.xml
@@ -57,7 +57,7 @@
<dependency>
<groupId>org.apache.ant</groupId>
<artifactId>ant</artifactId>
- <version>1.10.9</version>
+ <version>1.10.11</version>
<scope>compile</scope>
<exclusions>
<exclusion>