This is an automated email from the ASF dual-hosted git repository.

tilman pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/tika.git


The following commit(s) were added to refs/heads/main by this push:
     new c204c73fb TIKA-4166: update google cloud, jackson, threetenbp, sqlite
c204c73fb is described below

commit c204c73fbaa51adc81119d09155aa33a8dcb4b94
Author: Tilman Hausherr <[email protected]>
AuthorDate: Fri Sep 27 14:04:33 2024 +0200

    TIKA-4166: update google cloud, jackson, threetenbp, sqlite
---
 tika-parent/pom.xml | 10 +++++-----
 1 file changed, 5 insertions(+), 5 deletions(-)

diff --git a/tika-parent/pom.xml b/tika-parent/pom.xml
index d446c4f6a..88238a4ce 100644
--- a/tika-parent/pom.xml
+++ b/tika-parent/pom.xml
@@ -308,7 +308,7 @@
 
     <!-- dependency versions -->
     <!-- change threetenbp exclusion version -->
-    <google.cloud.version>2.43.0</google.cloud.version>
+    <google.cloud.version>2.43.1</google.cloud.version>
     <aws.version>1.12.772</aws.version>
     <!-- WARNING: when you upgrade asm make sure that you update the
         OpCode in the initializer in 
org.apache.tika.parser.asm.XHTMLClassVisitor
@@ -359,8 +359,7 @@
     <icu4j.version>75.1</icu4j.version>
     <imageio.version>1.4.0</imageio.version>
     <jackrabbit.version>2.22.0</jackrabbit.version>
-    <!-- 2.18.0-rc1 tested successfully -->
-    <jackson.version>2.17.2</jackson.version>
+    <jackson.version>2.18.0</jackson.version>
     <jackcess.version>4.0.7</jackcess.version>
     <jackcess.encrypt.version>4.0.2</jackcess.encrypt.version>
     <jai.imageio.core.version>1.4.0</jai.imageio.core.version>
@@ -429,7 +428,7 @@
     <solrj.version>8.11.3</solrj.version>
     <!-- NOTE: Spring 6 requires jdk17  -->
     <spring.version>5.3.39</spring.version>
-    <sqlite.version>3.46.1.0</sqlite.version>
+    <sqlite.version>3.46.1.2</sqlite.version>
     <stax.ex.version>2.1.0</stax.ex.version>
     <tagsoup.version>1.2.1</tagsoup.version>
     <testcontainers.version>1.20.1</testcontainers.version>
@@ -1138,10 +1137,11 @@
               <version>1.3.3</version>
             </coordinate>
             <!-- brought in by gcs (google-cloud-storage) fetcher -->
+            <!-- CVE-2024-23082 and CVE-2024-23081 are disputed -->
             <coordinate>
               <groupId>org.threeten</groupId>
               <artifactId>threetenbp</artifactId>
-              <version>1.6.9</version>
+              <version>1.7.0</version>
             </coordinate>
             <coordinate>
               <groupId>joda-time</groupId>

Reply via email to