This is an automated email from the ASF dual-hosted git repository.
abhishekrb pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/druid.git
The following commit(s) were added to refs/heads/master by this push:
new b692c59b9de Bump org.mozilla:rhino from 1.7.14 to 1.7.14.1 (#18868)
b692c59b9de is described below
commit b692c59b9de44c3196e08d2649650da7226fcf41
Author: Ashwin Tumma <[email protected]>
AuthorDate: Mon Dec 29 07:02:16 2025 -0800
Bump org.mozilla:rhino from 1.7.14 to 1.7.14.1 (#18868)
Upgraded org.mozilla:rhino version to 1.7.14.1 to resolve CVE-2025-66453.
Co-authored-by: Ashwin Tumma <[email protected]>
---
licenses.yaml | 2 +-
pom.xml | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/licenses.yaml b/licenses.yaml
index eba44c68707..267d5e00195 100644
--- a/licenses.yaml
+++ b/licenses.yaml
@@ -3851,7 +3851,7 @@ name: Rhino
license_category: binary
module: java-core
license_name: Mozilla Public License Version 2.0
-version: 1.7.14
+version: 1.7.14.1
copyright: Mozilla and individual contributors.
license_file_path: licenses/bin/rhino.MPL2
libraries:
diff --git a/pom.xml b/pom.xml
index ac87329811b..bdc7975350d 100644
--- a/pom.xml
+++ b/pom.xml
@@ -603,7 +603,7 @@
<dependency>
<groupId>org.mozilla</groupId>
<artifactId>rhino</artifactId>
- <version>1.7.14</version>
+ <version>1.7.14.1</version>
</dependency>
<dependency>
<groupId>org.apache.commons</groupId>
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
