This is an automated email from the ASF dual-hosted git repository. penghui pushed a commit to branch branch-2.9 in repository https://gitbox.apache.org/repos/asf/pulsar.git
commit ff96162732b6978d8046ddb6caa28d62f5bf101a Author: Andrey Yegorov <[email protected]> AuthorDate: Wed Jan 19 23:51:57 2022 -0800 Getting rid of CVEs in batch-data-generator (#13820) CVE-2021-41269 CVE-2021-22060 CVE-2021-22096 CVE-2021-22118 (cherry picked from commit 5a33d106dd282fa85008888a687c94203f888df7) --- pom.xml | 4 ++-- pulsar-io/batch-data-generator/pom.xml | 6 ++++++ 2 files changed, 8 insertions(+), 2 deletions(-) diff --git a/pom.xml b/pom.xml index cfa1c2d..22afc5c 100644 --- a/pom.xml +++ b/pom.xml @@ -198,8 +198,8 @@ flexible messaging model and an intuitive client API.</description> <!-- override kotlin-stdlib used by okio in order to address CVE-2020-29582 --> <kotlin-stdlib.version>1.4.32</kotlin-stdlib.version> <nsq-client.version>1.0</nsq-client.version> - <cron-utils.version>9.1.3</cron-utils.version> - <spring-context.version>5.3.1</spring-context.version> + <cron-utils.version>9.1.6</cron-utils.version> + <spring-context.version>5.3.15</spring-context.version> <apache-http-client.version>4.5.13</apache-http-client.version> <!-- test dependencies --> diff --git a/pulsar-io/batch-data-generator/pom.xml b/pulsar-io/batch-data-generator/pom.xml index 8141194..288583b 100644 --- a/pulsar-io/batch-data-generator/pom.xml +++ b/pulsar-io/batch-data-generator/pom.xml @@ -45,6 +45,12 @@ </dependency> <dependency> + <groupId>org.springframework</groupId> + <artifactId>spring-context</artifactId> + <version>${spring-context.version}</version> + </dependency> + + <dependency> <groupId>io.codearte.jfairy</groupId> <artifactId>jfairy</artifactId> <version>0.5.9</version>
