You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@inlong.apache.org by GitBox <gi...@apache.org> on 2022/04/01 08:41:31 UTC
[GitHub] [incubator-inlong] pjfanning opened a new issue #3504: [Bug] upgrade to jackson-databind 2.12.6.1 (due to cve)
pjfanning opened a new issue #3504:
URL: https://github.com/apache/incubator-inlong/issues/3504
### What happened
dependabot alert
https://github.com/advisories/GHSA-57j2-w4cx-62h2
only jackson-databind has a 2.12.6.1 release - other jackson jars should be upgraded to 2.12.6
### What you expected to happen
n/a
### How to reproduce
n/a
### Environment
_No response_
### InLong version
master
### InLong Component
InLong Manager
### Are you willing to submit PR?
- [ ] Yes, I am willing to submit a PR!
### Code of Conduct
- [X] I agree to follow this project's [Code of Conduct](https://www.apache.org/foundation/policies/conduct)
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: dev-unsubscribe@inlong.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org
[GitHub] [incubator-inlong] seedscoder commented on issue #3504: [Bug] upgrade to jackson-databind 2.12.6.1 (due to cve)
Posted by GitBox <gi...@apache.org>.
seedscoder commented on issue #3504:
URL: https://github.com/apache/incubator-inlong/issues/3504#issuecomment-1086573091
Did anyone else start dealing with it? If not, I'll upgrade this component
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: commits-unsubscribe@inlong.apache.org
For queries about this service, please contact Infrastructure at:
users@infra.apache.org