This is an automated email from the ASF dual-hosted git repository.
eolivelli pushed a commit to branch branch-3.6
in repository https://gitbox.apache.org/repos/asf/zookeeper.git
The following commit(s) were added to refs/heads/branch-3.6 by this push:
new 0cb75e5d8 ZOOKEEPER-4510: dependency-check:check failing -
reload4j-1.2.19.jar: CVE-2020-9493, CVE-2022-23307
0cb75e5d8 is described below
commit 0cb75e5d85543180baec5d4b46dd3a2d3eff51c3
Author: Mohammad Arshad <[email protected]>
AuthorDate: Thu May 5 08:25:19 2022 +0200
ZOOKEEPER-4510: dependency-check:check failing - reload4j-1.2.19.jar:
CVE-2020-9493, CVE-2022-23307
Upgraded dependency-check-maven plugin from 6.5.3 to 7.1.0
Author: Mohammad Arshad <[email protected]>
Reviewers: Enrico Olivelli <[email protected]>, Mate Szalay-Beko
<[email protected]>, ZhangJian He <[email protected]>
Closes #1872 from arshadmohammad/ZOOKEEPER-4510-upgrade
(cherry picked from commit 24073884e114c6d6a14d559dd74d219bc259792b)
Signed-off-by: Enrico Olivelli <[email protected]>
---
pom.xml | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/pom.xml b/pom.xml
index 36b320f24..5d881abb7 100755
--- a/pom.xml
+++ b/pom.xml
@@ -672,7 +672,7 @@
<plugin>
<groupId>org.owasp</groupId>
<artifactId>dependency-check-maven</artifactId>
- <version>6.5.3</version>
+ <version>7.1.0</version>
</plugin>
<plugin>
<groupId>org.apache.maven.plugins</groupId>
