You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@pinot.apache.org by xi...@apache.org on 2022/02/23 20:35:07 UTC
[pinot] branch master updated: [issue-8149] upgrade snakeyaml due to cve (#8150)
This is an automated email from the ASF dual-hosted git repository.
xiangfu pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pinot.git
The following commit(s) were added to refs/heads/master by this push:
new 5f2cb0c [issue-8149] upgrade snakeyaml due to cve (#8150)
5f2cb0c is described below
commit 5f2cb0c6c3c02ab510abbc2a03368224f0340e7d
Author: PJ Fanning <pj...@users.noreply.github.com>
AuthorDate: Wed Feb 23 21:34:48 2022 +0100
[issue-8149] upgrade snakeyaml due to cve (#8150)
* [issue-8149] upgrade snakeyaml due to cve
* Update LICENSE-binary
---
LICENSE-binary | 2 +-
pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/LICENSE-binary b/LICENSE-binary
index 02af00d..dafe853 100644
--- a/LICENSE-binary
+++ b/LICENSE-binary
@@ -397,7 +397,7 @@ org.wildfly.openssl:wildfly-openssl:1.0.7.Final
org.xerial.larray:larray-buffer:0.4.1
org.xerial.larray:larray-mmap:0.4.1
org.xerial.snappy:snappy-java:1.1.1.7
-org.yaml:snakeyaml:1.16
+org.yaml:snakeyaml:1.30
software.amazon.awssdk:annotations:2.14.28
software.amazon.awssdk:apache-client:2.14.28
software.amazon.awssdk:arns:2.14.28
diff --git a/pom.xml b/pom.xml
index 8d639de..0ebbfb9 100644
--- a/pom.xml
+++ b/pom.xml
@@ -726,7 +726,7 @@
<dependency>
<groupId>org.yaml</groupId>
<artifactId>snakeyaml</artifactId>
- <version>1.16</version>
+ <version>1.30</version>
</dependency>
<dependency>
<groupId>org.xerial.larray</groupId>
---------------------------------------------------------------------
To unsubscribe, e-mail: commits-unsubscribe@pinot.apache.org
For additional commands, e-mail: commits-help@pinot.apache.org