lavanyaj14 opened a new pull request, #6743: URL: https://github.com/apache/incubator-kie-drools/pull/6743
**Thank you for submitting this pull request** **NOTE!:** Double-check the target branch for this PR. The default is `main` so it will target Drools 8 / Kogito. **Ports** If a forward-port or a backport is needed, paste the forward port PR here * N/A **Issue**: *(please edit the GitHub Issues link if it exists)* * [NO-ISSUE] **referenced Pull Requests**: *(please edit the URLs of referenced pullrequests if they exist)* * N/A ## Description This PR upgrades Logback from `1.5.32` to `1.5.34` to address reported Logback CVEs. Updated dependency version property: ```xml <version.ch.qos.logback>1.5.34</version.ch.qos.logback> ``` This property is used for both: * `ch.qos.logback:logback-core` * `ch.qos.logback:logback-classic` So both dependencies remain aligned to the same version. ## Changes Updated: * `kie-parent/pom.xml` Changed: * From: `1.5.32` * To: `1.5.34` ## Validation Verified locally: ```bash grep -n "version.ch.qos.logback" kie-parent/pom.xml grep -R "1.5.32" kie-parent/pom.xml ``` Result: * `version.ch.qos.logback` is updated to `1.5.34` * `1.5.32` is no longer present in `kie-parent/pom.xml` -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
