This is an automated email from the ASF dual-hosted git repository.
pkarwasz pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/logging-log4j-server.git
The following commit(s) were added to refs/heads/master by this push:
new c03d603 Upgrade vulnerable dependencies
c03d603 is described below
commit c03d603c8aca0408af5d43b3df13b8f52ab95515
Author: Piotr P. Karwasz <[email protected]>
AuthorDate: Tue Nov 14 12:16:28 2023 +0100
Upgrade vulnerable dependencies
---
log4j-server/pom.xml | 5 ++---
pom.xml | 6 ++----
2 files changed, 4 insertions(+), 7 deletions(-)
diff --git a/log4j-server/pom.xml b/log4j-server/pom.xml
index 5a78828..c95fdb2 100644
--- a/log4j-server/pom.xml
+++ b/log4j-server/pom.xml
@@ -72,7 +72,7 @@
<dependency>
<groupId>com.fasterxml.woodstox</groupId>
<artifactId>woodstox-core</artifactId>
- <version>5.0.2</version>
+ <version>6.5.1</version>
</dependency>
<!-- TEST DEPENDENCIES -->
@@ -80,8 +80,7 @@
<!-- Pull in useful test classes from API -->
<dependency>
<groupId>org.apache.logging.log4j</groupId>
- <artifactId>log4j-core</artifactId>
- <type>test-jar</type>
+ <artifactId>log4j-core-test</artifactId>
<scope>test</scope>
</dependency>
<dependency>
diff --git a/pom.xml b/pom.xml
index 0f20b3d..f321db2 100644
--- a/pom.xml
+++ b/pom.xml
@@ -235,10 +235,8 @@
</dependency>
<dependency>
<groupId>org.apache.logging.log4j</groupId>
- <artifactId>log4j-core</artifactId>
+ <artifactId>log4j-core-test</artifactId>
<version>${project.version}</version>
- <type>test-jar</type>
- <scope>test</scope>
</dependency>
<dependency>
<groupId>com.fasterxml.jackson.core</groupId>
@@ -273,7 +271,7 @@
<dependency>
<groupId>junit</groupId>
<artifactId>junit</artifactId>
- <version>4.12</version>
+ <version>4.13.2</version>
<scope>test</scope>
</dependency>
<dependency>
