You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@myfaces.apache.org by we...@apache.org on 2022/02/13 13:31:34 UTC

[myfaces-tobago] 03/32: cherrypick from 2.x: build: CVE fix

This is an automated email from the ASF dual-hosted git repository.

weber pushed a commit to branch TOBAGO-1999_Select2
in repository https://gitbox.apache.org/repos/asf/myfaces-tobago.git

commit dbcdbe7bb5c95b9a9516389ef33ee0740193c25e
Author: Udo Schnurpfeil <ud...@irian.eu>
AuthorDate: Mon Sep 20 08:37:35 2021 +0200

    cherrypick from 2.x: build: CVE fix
    
    * update commons-compress
---
 tobago-tool/tobago-theme-plugin/pom.xml | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/tobago-tool/tobago-theme-plugin/pom.xml b/tobago-tool/tobago-theme-plugin/pom.xml
index ecd33fd..18e997f 100644
--- a/tobago-tool/tobago-theme-plugin/pom.xml
+++ b/tobago-tool/tobago-theme-plugin/pom.xml
@@ -68,6 +68,11 @@
       <artifactId>plexus-compiler-api</artifactId>
       <version>1.5.3</version>
     </dependency>
+    <dependency>
+      <groupId>org.apache.commons</groupId>
+      <artifactId>commons-compress</artifactId>
+      <version>1.21</version>
+    </dependency>
   </dependencies>
   <dependencyManagement>
     <dependencies>