This is an automated email from the ASF dual-hosted git repository. pgil pushed a commit to branch trunk in repository https://gitbox.apache.org/repos/asf/ofbiz-framework.git
The following commit(s) were added to refs/heads/trunk by this push: new 0e88cd52f0 Improved: Upgrade zip4j to 2.11.5 (OFBIZ-12844) 0e88cd52f0 is described below commit 0e88cd52f0cab1790af1774f4f70e0003bae27fd Author: Gil <gil.portensei...@nereide.fr> AuthorDate: Fri Aug 18 15:21:23 2023 +0200 Improved: Upgrade zip4j to 2.11.5 (OFBIZ-12844) This upgrade fix one CVE (CVE-2023-22899) and add some improvment and bugfixes : https://github.com/srikanth-lingala/zip4j/releases --- build.gradle | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/build.gradle b/build.gradle index 5daa6c87f8..302213317d 100644 --- a/build.gradle +++ b/build.gradle @@ -229,7 +229,7 @@ dependencies { implementation 'de.odysseus.juel:juel-impl:2.2.7' implementation 'javax.transaction:javax.transaction-api:1.3' implementation 'net.fortuna.ical4j:ical4j:1.0-rc4-atlassian-12' - implementation 'net.lingala.zip4j:zip4j:2.11.2' + implementation 'net.lingala.zip4j:zip4j:2.11.5' implementation 'org.apache.ant:ant-junit:1.10.12' implementation 'org.apache.commons:commons-collections4:4.4' implementation 'org.apache.commons:commons-csv:1.9.0'