[ https://issues.apache.org/jira/browse/CASSANDRA-15867?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17134461#comment-17134461 ]
Stefan Miklosovic commented on CASSANDRA-15867: ----------------------------------------------- [~brandon.williams] I tried to apply it on 3.11 but there are incompatibilies on a source-code levels (classes not there etc). I do not want to make any changes to the codebase of 3.11 unnecessarilly, what is your opinion here? Should I invest time to bump it while it is not so trivial? This holds for more dependencies, what is the general approach here? > Update Jackson version to 2.9.10.1 because there are security issues in 2.9.5 > ----------------------------------------------------------------------------- > > Key: CASSANDRA-15867 > URL: https://issues.apache.org/jira/browse/CASSANDRA-15867 > Project: Cassandra > Issue Type: Task > Components: Dependencies > Reporter: Stefan Miklosovic > Assignee: Stefan Miklosovic > Priority: Normal > Fix For: 4.0-alpha5 > > Attachments: dependency-check-report.html > > > Please see attached HTML report from OWASP dependency check for current > 4.0-alpha5 trunk branch. > > -- This message was sent by Atlassian Jira (v8.3.4#803005) --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@cassandra.apache.org For additional commands, e-mail: commits-h...@cassandra.apache.org