mirror/Wurst7
0
0
Fork 0
mirror of https://github.com/Wurst-Imperium/Wurst7.git synced 2024-09-19 17:02:13 +02:00
Code

Update org.kohsuke:github-api to fix vulnerable sub-dependencies

Browse Source 
Specifically: CVE-2022-42003, CVE-2021-46877, CVE-2022-42004, and CVE-2020-36518, all caused by com.fasterxml.jackson.core:jackson-databind version 2.13.0.

These vulnerabilities don't affect end users of Wurst. Only developers were potentially affected. Then again, the attack vectors for these CVEs aren't super relevant when compiling Wurst. So, do update your forks, but don't worry too much.
This commit is contained in:
Alexander01998 2024-04-17 15:56:15 +02:00 committed by GitHub
parent 6ed24cbad7
commit f53cbff5b6
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
build.gradle
View File

@ -1,6 +1,6 @@
buildscript {
dependencies {
classpath 'org.kohsuke:github-api:1.135'
classpath 'org.kohsuke:github-api:1.321'
}
}