This is an automated email from the ASF dual-hosted git repository.
mmerli pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/pulsar.git
The following commit(s) were added to refs/heads/master by this push:
new 705e9a2 [security] pulsar-io-kafka: upgrade jersey-bean-validation to
get rid CVE-2017-7536 (brought in by Hibernate Validator 5.x) (#13868)
705e9a2 is described below
commit 705e9a2f528aea507ad16ed3b378c1dfd0dbed51
Author: Nicolò Boschi <[email protected]>
AuthorDate: Sat Jan 22 16:14:48 2022 +0100
[security] pulsar-io-kafka: upgrade jersey-bean-validation to get rid
CVE-2017-7536 (brought in by Hibernate Validator 5.x) (#13868)
---
pulsar-io/kafka/pom.xml | 10 ++++++++++
1 file changed, 10 insertions(+)
diff --git a/pulsar-io/kafka/pom.xml b/pulsar-io/kafka/pom.xml
index cb25068..9ce9340 100644
--- a/pulsar-io/kafka/pom.xml
+++ b/pulsar-io/kafka/pom.xml
@@ -30,6 +30,16 @@
<artifactId>pulsar-io-kafka</artifactId>
<name>Pulsar IO :: Kafka</name>
+ <dependencyManagement>
+ <dependencies>
+ <dependency>
+ <groupId>org.glassfish.jersey.ext</groupId>
+ <artifactId>jersey-bean-validation</artifactId>
+ <version>${jersey.version}</version>
+ </dependency>
+ </dependencies>
+ </dependencyManagement>
+
<dependencies>
<dependency>
