You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@rocketmq.apache.org by du...@apache.org on 2022/02/06 12:41:40 UTC

[rocketmq] branch develop updated: [Issue-3814] use snakeyaml 1.30 (#3815)

This is an automated email from the ASF dual-hosted git repository.

duhengforever pushed a commit to branch develop
in repository https://gitbox.apache.org/repos/asf/rocketmq.git


The following commit(s) were added to refs/heads/develop by this push:
     new 3251114  [Issue-3814] use snakeyaml 1.30 (#3815)
3251114 is described below

commit 32511145ae88d8c975f092a52ccc75dce49248cb
Author: PJ Fanning <pj...@users.noreply.github.com>
AuthorDate: Sun Feb 6 13:41:19 2022 +0100

    [Issue-3814] use snakeyaml 1.30 (#3815)
    
    due to a CVE
---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index cb362d8..6411015 100644
--- a/pom.xml
+++ b/pom.xml
@@ -584,7 +584,7 @@
             <dependency>
                 <groupId>org.yaml</groupId>
                 <artifactId>snakeyaml</artifactId>
-                <version>1.19</version>
+                <version>1.30</version>
             </dependency>
             <dependency>
                 <groupId>commons-codec</groupId>